為 Cloud Quotas 設定 VPC Service Controls
Trusted Cloud by S3NS 虛擬私有雲 (VPC) Service Control 可讓您設定安全 perimeter,防範資料竊取。使用 VPC Service Controls 設定 Cloud Quotas,確保對 Cloud Quotas 的 API 要求不會超出 VPC 服務範圍。
限制
由於 VPC Service Controls 會在專案層級強制執行邊界,因此只有在機構設定輸出規則的情況下,源自邊界內用戶端的 Cloud Quotas 要求才能存取機構資源。如要設定輸出規則,請參閱 VPC Service Controls 的輸入和輸出政策設定操作說明
強制執行的動作
VPC Service Controls 只會強制執行下列 Cloud Quotas 動作:
如需設定 QuotaPreference 和 QuotaInfo 的範例,請參閱 API 資源模型的說明。如需參考資訊,請參閱 REST API 總覽。
設定
請按照下列步驟操作,將 Cloud Quotas API 限制在 VPC 服務範圍內:
按照操作說明設定 Cloud Quotas API。
請按照 VPC Service Controls 快速入門指南操作,完成下列工作:
- 建立服務範圍。
- 將要保護的專案新增至範圍。
- 限制 Cloud Quotas API。舉例來說,請參閱這些操作說明,瞭解如何將其他 Trusted Cloud by S3NS API 新增至 VPC 服務範圍。
設定服務範圍後,VPC Service Controls 會檢查對 Cloud Quotas API 的呼叫,確保呼叫來自同一個範圍內。
後續步驟
除非另有註明,否則本頁面中的內容是採用創用 CC 姓名標示 4.0 授權,程式碼範例則為阿帕契 2.0 授權。詳情請參閱《Google Developers 網站政策》。Java 是 Oracle 和/或其關聯企業的註冊商標。
上次更新時間:2025-08-18 (世界標準時間)。
[[["容易理解","easyToUnderstand","thumb-up"],["確實解決了我的問題","solvedMyProblem","thumb-up"],["其他","otherUp","thumb-up"]],[["缺少我需要的資訊","missingTheInformationINeed","thumb-down"],["過於複雜/步驟過多","tooComplicatedTooManySteps","thumb-down"],["過時","outOfDate","thumb-down"],["翻譯問題","translationIssue","thumb-down"],["示例/程式碼問題","samplesCodeIssue","thumb-down"],["其他","otherDown","thumb-down"]],["上次更新時間:2025-08-18 (世界標準時間)。"],[[["\u003cp\u003eGoogle Cloud VPC Service Controls allows you to establish a secure perimeter to prevent data exfiltration, ensuring Cloud Quotas API requests remain within the designated boundary.\u003c/p\u003e\n"],["\u003cp\u003eVPC Service Controls for Cloud Quotas are enforced on specific actions, including quota preference creation, update, get, and list, as well as quota info get and list operations.\u003c/p\u003e\n"],["\u003cp\u003eTo access organization resources via Cloud Quotas from within the service perimeter, an egress rule must be configured by the organization.\u003c/p\u003e\n"],["\u003cp\u003eSetting up VPC Service Controls for Cloud Quotas involves creating a service perimeter, adding protected projects, and restricting the Cloud Quotas API within that perimeter, following provided instructions.\u003c/p\u003e\n"],["\u003cp\u003eAfter the perimeter is configured, VPC Service Controls verifies that calls to the Cloud Quotas API originate from within the same defined perimeter.\u003c/p\u003e\n"]]],[],null,[]]
