You want to apply a new Cloud Armor policy to an application that is deployed in Google Kubernetes Engine (GKE)
You want to find out which target to use for your Cloud Armor policy.
Which GKE resource should you use?
Click on the arrows to vote for the correct answer
A. B. C. D.B.
https://cloud.google.com/kubernetes-engine/docs/how-to/cloud-armor-backendconfigTo apply a new Cloud Armor policy to an application deployed in Google Kubernetes Engine (GKE), you need to determine the appropriate target to use for your Cloud Armor policy.
In GKE, you can use Cloud Armor to protect your Kubernetes resources by defining a set of rules and configuring an HTTP(S) Load Balancing backend service to use those rules. The backend service then applies the rules to traffic before forwarding it to your Kubernetes cluster.
The target of a Cloud Armor policy is the resource to which the policy is applied. The target can be any backend service that supports Cloud Armor, including GKE resources.
Based on the available options, the appropriate GKE resource to use as the target for your Cloud Armor policy is the GKE Ingress.
An Ingress resource is a Kubernetes resource that defines rules for how external traffic should be routed to the services within your GKE cluster. An Ingress resource can be used to configure HTTP(S) Load Balancing and is required to use Cloud Armor with GKE.
Therefore, the correct answer is D. GKE Ingress.