Software development
Artificial Intelligence
Cloud
View all courses
Learn
Connect
Blog
Resource hub
Featured resource
2025 Tech Upskilling Playbook
Tech Upskilling Playbook

Build future-ready tech teams and hit key business milestones with seven proven plays from industry leaders.

Check it out
  • Lab
    • Libraries: If you want this lab, consider one of these libraries.
    • Cloud
    • Security
Labs

Configuring WAF Rules Using Cloud Armor

Securing a GCP web application is an important cloud security skill. In this lab scenario, it's your responsibility to implement two Cloud Armor web application firewall (WAF) rules that will defend against web app attacks. By implementing SQLi and XSS WAF rules, your web app will be less vulnerable to OWASP Top 10 injection attacks and more secure as a whole.

Get started Contact sales
Lab platform
Lab Info
Level
Beginner
Last updated
Oct 28, 2025
Duration
45m

Contact sales

By clicking submit, you agree to our Privacy Policy and Terms of Use.
Table of Contents

  1. Challenge

    Create HTTP(S) Cloud Load Balancer
    1. Use the Cloud Load Balancing service to create an HTTP(S) load balancer.
    2. Create a frontend service named front.
    3. Create a backend service named back.
    4. Create a Health Check named healthcheck.

  2. Challenge

    Create Cloud Armor WAF Rules
    1. Create a Cloud Armor security policy named secpolicy.
    2. Create a rule named US only and SQLi that uses US as the origin region code and the preconfigured expression for "sqli-canary".
    3. Create a rule named XSS that uses the preconfigured expression for xss-canary but excludes the OWASP core rule set v020901-id981136.
    4. Enable Cloud Armor logging.
    5. Enable Adaptive Protection.
About the author
Pluralsight Skills - Labs - Pluralsight
Pluralsight Skills

Pluralsight Skills gives leaders confidence they have the skills needed to execute technology strategy. Technology teams can benchmark expertise across roles, speed up release cycles and build reliable, secure products. By leveraging our expert content, skill assessments and one-of-a-kind analytics, keep up with the pace of change, put the right people on the right projects and boost productivity. It's the most effective path to developing tech skills at scale.

Real skill practice before real-world application

Hands-on Labs are real environments created by industry experts to help you learn. These environments help you gain knowledge and experience, practice without compromising your system, test without risk, destroy without fear, and let you learn from your mistakes. Hands-on Labs: practice your skills before delivering in the real world.

Learn by doing

Engage hands-on with the tools and technologies you’re learning. You pick the skill, we provide the credentials and environment.

Follow your guide

All labs have detailed instructions and objectives, guiding you through the learning process and ensuring you understand every step.

Turn time into mastery

On average, you retain 75% more of your learning if you take time to practice. Hands-on labs set you up for success to make those skills stick.

Get started with Pluralsight

View individual plans View team plans