How to safely gradually roll out WAF rules

Hi all,

#Context
Our team use GCP and we want to apply preconfigured web application firewall rules to our load balancers.

Preconfigured web application firewall rules: "Google Cloud Armor preconfigured WAF rules are complex web application firewall (WAF) rules with dozens of signatures that are compiled from open source industry standards. Each signature corresponds to an attack detection rule in the ruleset... The rule sources are ModSecurity Core Rule Set (CRS) 3.0 and CRS 3.3"


**Since WAF rules might accidentally …

application attack block cloud cloud armor context cybersecurity detection firewall firewall rules gcp google google cloud industry load balancers modsecurity open source rules ruleset signature signatures standards system team traffic waf web web application web application firewall