The Recommendation Hub is a feature of the Recommender product that provides usage recommendations for Google Cloud products and services.
The Google Cloud console for the Recommendation Hub shows the following firewall rule insights:
- Shadowed firewall rules
- Overly permissive rules
For general information about Recommendation Hub, see Getting started with Recommendation Hub.
Within Recommendation Hub, the names of the cards differ from those used on the Firewall Insights page. For details, review the following sections.
View shadowed firewall rules
To learn about this insight, see Shadowed rules in Firewall Insights categories and states.
Console
In the Google Cloud console, go to the Recommendation Hub.
On the card named Simplify firewall configuration, click View all. The Recommendation Hub displays a page that lists shadowed rules. The Insight column for each rule provides a summary of why the rule was identified as a shadowed rule.
To view more details about the shadowed rule and the rules that shadow it, click the insight.
View overly permissive rule insights
To learn about these insights, see the following sections in overly permissive rules in Firewall Insights categories and states:
- Allow rules with no hits
- Allow rules with unused attributes
Allow rules with overly permissive IP address or port ranges
Console
In the Google Cloud console, go to the Recommendation Hub.
On the card named Review overly permissive firewall rules, click View all.
To toggle between the insight types, use the tabs at the top of the page.
You can click the insight for any rule listed to understand why the rule was included in the list. The insight detail shows more information about the hit count and attributes for a rule.
Mark an insight as dismissed
If any insight isn't meaningful, or if you want to hide it for any other reason, you can dismiss it. After you dismiss an insight, the Google Cloud console no longer displays the insight to you or other users unless you restore it.
Console
In the Google Cloud console, go to the Recommendation Hub.
Find the appropriate card and click View all.
If you want to dismiss an insight about an overly permissive rule, use the tabs at the top of the page to navigate to the appropriate insight category.
Select the insights that you want to dismiss, and then click Dismiss.
In the confirmation dialog, click Yes, dismiss.
Restore a dismissed insight
If you dismissed an insight that you later think is relevant, you or a user can restore it and make it visible in the Google Cloud console by following these steps.
Console
In the Google Cloud console, go to the Recommendation Hub.
Find the appropriate card and click View all.
If you want to dismiss an insight about an overly permissive rule, use the tabs at the top of the page to navigate to the appropriate insight category.
At the top of the page, click History.
Click the Dismissed tab, which shows dismissed recommendations and insights for the project.
Select the insights that you want to restore.
Click Restore.
In the confirmation dialog, click Restore.