Difference between revisions of "Kubernetes network policies"
Jump to navigation
Jump to search
Line 3: | Line 3: | ||
* https://kubernetes.io/docs/concepts/services-networking/network-policies/#networkpolicy-resource | * https://kubernetes.io/docs/concepts/services-networking/network-policies/#networkpolicy-resource | ||
− | Official example | + | == Official example == |
apiVersion: networking.k8s.io/v1 | apiVersion: networking.k8s.io/v1 | ||
− | kind: NetworkPolicy | + | [[kind: NetworkPolicy]] |
metadata: | metadata: | ||
name: test-network-policy | name: test-network-policy |
Revision as of 13:01, 17 August 2022
Official example
apiVersion: networking.k8s.io/v1 kind: NetworkPolicy metadata: name: test-network-policy namespace: default spec: podSelector: matchLabels: role: db policyTypes: - Ingress - Egress ingress: - from: - ipBlock: cidr: 172.17.0.0/16 except: - 172.17.1.0/24 - namespaceSelector: matchLabels: project: myproject - podSelector: matchLabels: role: frontend ports: - protocol: TCP port: 6379 egress: - to: - ipBlock: cidr: 10.0.0.0/24 ports: - protocol: TCP port: 5978
Related
See also
- Kubernetes networking: network policies, Network Policy Providers, CNI, Calico, flannel, Service mesh, Istio,
kube-proxy, coredns, AWS VPC CNI: vpc-cni
, Kubernetes: Ingress controllers, IPVS, ServiceTypes:LoadBalancer, ClusterIP, NodePort, ExternalName
, Endpoints, EndpointSlices, Kubernetes DNS,svc.cluster.local
, Weave Net
Advertising: