GitHub - mathieu-benoit/k8s-netpol: Kubernetes Network Policies samples

Kubernetes resources leveraged and illustrated by this blog article I wrote: Kubernetes Network Policies, how to secure the communications between your pods

To summarize, here are the bash commands you need to run:

# Get you AKS cluster with Calico enabled
az aks create... \
  --network-policy calico

# Since we would like to allow DNS resolution from WEB and API to respectively call API and DB we need to create a Label on the kube-system Namespace
kubectl label ns kube-system name=kube-system

# Create a Namespace to deploy K8S resources into it
ns=yournamespace
kubectl create ns $ns
kubectl config set-context \
  --current \
  --namespace $ns

# Deploy WEB, API and DB Pods/Services
kubectl apply \
  -f db-api-web-deployments.yaml

# Apply the first NetworkPolicy: deny all Ingress/Egress
kubectl apply \
  -f deny-all-netpol.yaml
 
# Apply the NetworkPolicy definition related to DB
kubectl apply \
  -f db-netpol.yaml

# Apply the NetworkPolicy definition related to API
kubectl apply \
  -f api-netpol.yaml

# Apply the NetworkPolicy definition related to WEB
kubectl apply \
  -f web-netpol.yaml

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

About

Releases

Packages

Contributors 2

Name		Name	Last commit message	Last commit date
Latest commit History 37 Commits
README.md		README.md
api-netpol.yaml		api-netpol.yaml
db-api-web-deployments.png		db-api-web-deployments.png
db-api-web-deployments.yaml		db-api-web-deployments.yaml
db-netpol.yaml		db-netpol.yaml
deny-all-netpol.yaml		deny-all-netpol.yaml
web-netpol.yaml		web-netpol.yaml

mathieu-benoit/k8s-netpol

Folders and files

Latest commit

History

Repository files navigation

About

Topics

Resources

Stars

Watchers

Forks

Releases

Packages 0

Contributors 2

Packages