Best practice rules for GCP Cloud Load Balancing
Trend Micro Cloud One™ – Conformity monitors GCP Cloud Load Balancing with the following rules:
- Approved External Load Balancers
Ensure that only approved external load balancers are used for load-balanced websites and applications.
- Check for Insecure SSL Cipher Suites
Ensure there are no HTTPS/SSL Proxy load balancers configured with insecure SSL policies.
- Configure edge security policies for load balancer backend services
Ensure that load balancer backend services are protected with edge security policies.
- Detect GCP Load Balancer Configuration Changes
Load Balancing configuration changes have been detected within your Google Cloud Platform (GCP) account.
- Enable HTTPS for Google Cloud Load Balancers
Ensure that Google Cloud load balancers enforce HTTPS to handle encrypted web traffic.
- Enable Logging for HTTP(S) Load Balancers
Ensure that logging is enabled for your Google Cloud HTTP(S) load balancers.
- Use Google-Managed SSL Certificates for Application Load Balancers
Ensure that external Application Load Balancers are using Google-managed SSL certificates.