Ensure that each Managed Instance Group is using a load balancer to act as an instance group frontend. Google Cloud Managed Instance Groups (MIGs) are groups of virtual machine (VM) instances that you control as a single entity. MIGs support rich features such as autoscaling and autohealing, load balancing, multiple zone coverage, and stateful workloads.
This rule resolution is part of the Conformity Security & Compliance tool for GCP.
optimisation
efficiency
excellence
To ensure optimal availability and scalability for your websites and web applications hosted on a Google Cloud instance group, it is strongly recommended to set up a load balancer in front of the instance group. By configuring a load balancer for your Managed Instance Group (MIG), you can leverage its capabilities to evenly distribute traffic among multiple healthy VM instances. This ensures that your websites and applications remain consistently available and responsive to end users, providing an enhanced user experience.
Audit
To determine if your Managed Instance Groups are associated with load balancers, perform the following actions:
Remediation / Resolution
To create and configure load balancers for Managed Instance Groups (MIGs), perform the following actions:
References
- Google Cloud Platform (GCP) Documentation
- Cloud Load Balancing overview
- Using load balancing for highly available applications
- Adding an instance group to a load balancer
- Setting up an external HTTP(S) load balancer
- GCP Command Line Interface (CLI) Documentation
- gcloud projects list
- gcloud compute backend-services list
- gcloud compute health-checks create http
- gcloud compute backend-services create
- gcloud compute backend-services add-backend
- gcloud compute url-maps create
- gcloud compute target-http-proxies create
- gcloud compute forwarding-rules create