Cloud Next Generation Firewall is a fully distributed firewall service with advanced protection capabilities, micro-segmentation, and pervasive coverage to protect your workloads from internal and external attacks. Cloud NGFW provides a stateful, fully distributed host-based enforcement on each workload to enable zero-trust security architecture. This page describes the differences between the Cloud de Confiance and Google Cloud versions of Cloud NGFW.
For more detailed information about Cloud NGFW, see the Cloud NGFW overview and the rest of the Cloud NGFW documentation.
Key differences
There are some differences between the Cloud de Confiance version of Cloud NGFW and the Google Cloud version. If you are already familiar with Google Cloud, we recommend that you review these differences carefully, particularly before designing an application to run on Cloud de Confiance. We also recommend reviewing the general differences between Cloud de Confiance and Google Cloud.
If you would like to use a particular Cloud NGFW feature that isn't currently available in Cloud de Confiance, contact Cloud de Confiance support. To be notified when new features roll out in Cloud de Confiance, subscribe to the release notes. Unless otherwise specified, features that are in preview are not available in Cloud de Confiance.
Firewall tiers
| Firewall tiers | The following tiers of Cloud NGFW are available in Cloud de Confiance by S3NS:
Cloud NGFW Enterprise is unavailable. |
Availability and disaster recovery
| Regions and zones | Cloud de Confiance by S3NS has only a single region, though with multiple zones. Multi-region features and cross-region failover are unavailable. |
Firewall features
| Security profiles | Unavailable |
| Security profile groups | Unavailable |
| Firewall endpoints | Unavailable |
Security and access control
| Security features | The following security features are unavailable in Cloud de Confiance by S3NS:
|
Other cross-product integrations
| Google Cloud Armor | Available |
| App Engine | Available |
| Filestore | Available |
Related guides
The following information might also affect how you use and design for Cloud NGFW in Cloud de Confiance by S3NS. These guides include general information about working in Cloud de Confiance, including documentation, security and access control, billing, tooling, and service usage.
For details about other services and features in Cloud de Confiance and their differences from their Google Cloud counterparts, see the product list.