Reputation: 31
Google Compute Engine Firewall
When I create an instance in Google Compute Engine the instance is created with a default network and firewall. Does this firewall preclude the use of activating the firewall in Ubuntu itself?
In other words, is enabling the ufw in Ubuntu redundant for an ecommerce implementation?
Thank you.
Upvotes: 3
Views: 712
Answers (2)
Reputation: 522
It is not redundant, as long as you enabled ufw and permitted port 22. Cause most of the time once ufw has been enabled on the VM instance side. Port 22 is always forgot to exclude.
GCP firewall rules is different to UFW of VM instance.
Upvotes: 0
Reputation: 19835
Wont hurt to run additional firewalls. Some may have richer features that the GCE firewall doesnt have, or might help in case the GCE firewall has a security hole.
The drawback is that its more work to configure and later maintain individual firewalls if you have several instances, and you will consume a little more resources to run the extra firewall.
Upvotes: 3
Related Questions
- Google Cloud Compute Engine refusing connections despite firewall rule
- How is Google App Engine Firewall working?
- Google Cloud firewall
- Google Compute Engine: How can I disable the firewall of VM instance?
- Compute Engine Firewall for App Engine Url Fetch
- GCP Compute Engine Firewall Rules for TCP Server
- How to create a Firewall rule for Compute Engine via Google Cloud Client?
- gcloud compute: configure firewall for external traffic
- CentOS Firewall Issues on GCE
- Google Compute Engine default firewall port 80