Google Cloud Armor

by mindprinceon 3/21/2018, 11:29:35 PM with 18 comments
  • by antoncohenon 3/22/2018, 12:52:30 AM

    I know people are saying this is just like Cloudflare, but there might be some real value differentiation here. Google has been doing some really advanced things in this area for a long time. I think I saw a research paper or talk from 5-10 years ago about how Google shows the impact of network policies before applying them, I just searched for it and couldn't find it[1]. The things like Preview Mode and Rich Rules Language could be very advanced.

    [1] But I did find this page about their network research: https://research.google.com/teams/netsys/

  • by foxyladon 3/22/2018, 12:27:36 AM

    Interesting - given Cloudflare's real value proposition and domination of their sector, I've been half expecting Google to buy them for a year now.

    Google are very good at internet plumbing, and I expect this to be a pretty compelling service. Serious competition and not being an acquisition target any more must have really hurt Cloudflare's value today.

  • by ivanfonon 3/22/2018, 12:01:27 AM

    Not a huge fan of Google getting more control over the net. On the bright side, Cloudflare getting a serious competitor is good.

  • by wslhon 3/22/2018, 12:59:21 AM

    Many people don't realize that Cloudflare also received funding from Google: https://blog.cloudflare.com/why-we-raised-110m-from-fidelity... it seems cheaper to include it in Google Cloud than buying the company.

  • by philip1209on 3/22/2018, 2:17:57 AM

    This would be a lot easier to use if Google added auto-https to their http load balancers. They already offer it for AppEngine custom domains.

  • by victor106on 3/22/2018, 12:17:55 AM

    This is great news. Cloudflare is way too expensive. Pricing seems reasonable

    Policy Charge $5 per Cloud Armor policy per month Per Rule Charge $1 per rule per policy per month Incoming Requests Charge $0.75 per million HTTP(S) requests

  • by Elect2on 3/22/2018, 5:36:14 AM

    Here's a comparison of Google Armor vs. AWS WAF vs. CloudFlare: https://www.chooseacloud.com/waf

  • by Dawny33on 3/22/2018, 6:27:46 AM

    How does it compare to its Azure counterpart? (https://azure.microsoft.com/en-in/services/ddos-protection/)

  • by xstartupon 3/22/2018, 4:29:54 AM

    Kubernetes doesn't support multi-region load balancing with GSLB yet.

  • by philip1209on 3/22/2018, 4:00:06 PM

    I'm trying to enable Cloud Armor to play around with it, but it just looks like a firewall. I don't see a simple way to just "turn it on" - it looks like you have to create an IP address-based policy. It's unclear to me whether there is any kind of adaptive DDOS protection.

  • by nenrekon 3/22/2018, 11:26:31 AM

    Honestly thought this was an early April fool's joke base on the headline alone.

  • by greatamericanon 3/21/2018, 11:56:40 PM

    Nice. Cloudflare has had no competition for too long.

  • by samaton 3/22/2018, 5:54:53 PM

    Is GCA able to cache responses with proper cache headers or does it pass through everything without caching?

  • by vim_wannabeon 3/22/2018, 7:18:27 AM

    Is it true that sites routed via Cloudflare are blocked in certain countries like China? Would this work better?

  • by shenki0on 3/21/2018, 11:52:32 PM

    googleflare

  • by mdekkerson 3/23/2018, 6:22:22 AM

    Many, many years ago, a new product or service announcement from Google would leave me interested and excited. Now I just shrug and wonder when it will be abandoned.

  • by jacksmith21006on 3/22/2018, 1:13:10 PM

    Wasn't it Google that uncovered Cloud Bleed? Think Google solution is going to be more secure then something from Cloudflare.