🔥 3-day streak
Professional Cloud Architect163 / 169
Question 163 of 169
A financial services company runs workloads across dozens of projects under a single Google Cloud organization. The security team must enforce a baseline rule that blocks all inbound RDP (TCP 3389) traffic from the public internet across every project, and application teams must not be able to override or delete this rule. Individual project teams still need the freedom to create their own less-restrictive firewall rules for internal traffic. Which approach best meets these requirements?
Reviewed for accuracy · Report an issueNext question