Hi,
I believe this would work applying the firewall filter as output on the edge egress interfaces.
Maintaining the google prefix-list may be a challenge though if there are dynamic updates to the routes received over the private peering.
Could you share the rationale for applying bandwidth policers. Is it to save on transit costs?
Cheers,
Ashvin