Welcome! This tutorial helps you get started with Kubernetes NetworkPolicy.
What is Kubernetes NetworkPolicy?
NetworkPolicy is a standardized Kubernetes object to control the allowed network traffic patterns between Kubernetes pods and namespaces as well as any traffic entering or leaving the cluster. However, Kubernetes itself does not provide an implementation of NetworkPolicy, it is typically provided by the CNI plugin. If no NetworkPolicy is loaded, all communication is allowed which is clearly violating least-privilege and zero-trust security privileges. For more information on the concept, see Network Policies in the Kubernetes documentation.Read more
Part 2 | Securing access in and out of your clustercoming soon
Part 3 | Special cases: Host-networking, Loadbalancers, Health-checkingcoming soon
Part 4 | How to troubleshoot NetworkPolicy and monitor Compliancecoming soon
Interactive & tutorial-based policy creation
Easy sharing with others via GitHub
Auto-generate from network flow logs
NetworkPolicy & CiliumNetworkPolicy
Kubernetes Network Policy overview from Kubernetes documentation
Kubernetes uses a plugin model for networking, using the CNI to manage network resources on a cluster including network policies
Learn about the parts of the Kubernetes system and the abstractions Kubernetes uses to represent a cluster
A place to find and contribute useful resources and example policies.Go to repo
In this video tutorial, Thomas Graf walks us through step by step creating various common network policies and understanding their impacts.
Let’s explore five common gotchas we see trip up those working with Network Policy, both newbies and sometimes (gulp!) those of us who have been doing this for a while. At the end of each mistake, you’ll find a link to a short (3-5 minute) tutorial inRead more