Difference between revisions of "Kubernetes network policies"
Jump to navigation
Jump to search
(12 intermediate revisions by 3 users not shown) | |||
Line 1: | Line 1: | ||
* https://kubernetes.io/docs/concepts/services-networking/network-policies/ | * https://kubernetes.io/docs/concepts/services-networking/network-policies/ | ||
− | <code>[[kind: NetworkPolicy]]</code> | + | * <code>[[kind: NetworkPolicy]]</code> |
* https://kubernetes.io/docs/concepts/services-networking/network-policies/#networkpolicy-resource | * https://kubernetes.io/docs/concepts/services-networking/network-policies/#networkpolicy-resource | ||
− | Official example | + | == Official example == |
− | + | {{kind_networkpolicy_official}} | |
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
+ | |||
+ | == Other examples == | ||
+ | networkPolicy: | ||
+ | enabled: true | ||
+ | provider: [[CALICO]] | ||
+ | |||
+ | |||
+ | == News == | ||
+ | * 08/2023 [[Amazon VPC CNI now supports Kubernetes Network Policies]] | ||
== Related == | == Related == | ||
* [[CKA v1.21]]: [[Demonstrate basic understanding of NetworkPolicies]] | * [[CKA v1.21]]: [[Demonstrate basic understanding of NetworkPolicies]] | ||
* <code>[[kubectl get networkpolicy]]</code> | * <code>[[kubectl get networkpolicy]]</code> | ||
+ | * [[K8s Network Policy Provider]]: [[Calico]], [[Weave Net]] | ||
== See also == | == See also == | ||
− | * {{ | + | * {{kubectl networkpolicy}} |
+ | * {{Kubernetes networking}} | ||
[[Category:K8s]] | [[Category:K8s]] |
Latest revision as of 10:08, 23 April 2024
- https://kubernetes.io/docs/concepts/services-networking/network-policies/
kind: NetworkPolicy
- https://kubernetes.io/docs/concepts/services-networking/network-policies/#networkpolicy-resource
Official example[edit]
apiVersion: networking.k8s.io/v1 kind: NetworkPolicy metadata: name: test-network-policy namespace: default spec: podSelector: matchLabels: role: db policyTypes: - Ingress - Egress ingress: - from: - ipBlock: cidr: 172.17.0.0/16 except: - 172.17.1.0/24 - namespaceSelector: matchLabels: project: myproject - podSelector: matchLabels: role: frontend ports: - protocol: TCP port: 6379 egress: - to: - ipBlock: cidr: 10.0.0.0/24 ports: - protocol: TCP port: 5978
Other examples[edit]
networkPolicy: enabled: true provider: CALICO
News[edit]
Related[edit]
- CKA v1.21: Demonstrate basic understanding of NetworkPolicies
kubectl get networkpolicy
- K8s Network Policy Provider: Calico, Weave Net
See also[edit]
kind: NetworkPolicy, kubectl [ get | describe ] networkpolicy
, Weave Net- Kubernetes networking: network policies, Network Policy Providers, CNI, Calico, flannel, Service mesh, Istio,
kube-proxy, coredns, AWS VPC CNI: vpc-cni
, Kubernetes: Ingress controllers, IPVS, ServiceTypes:LoadBalancer, ClusterIP, NodePort, ExternalName
, Endpoints, EndpointSlices, Kubernetes DNS,svc.cluster.local
, Weave Net
Advertising: