Skip to content

CIDR-based deny security policies #7111

New issue
New issue
Closed
#12716
Closed
CIDR-based deny security policies#7111
#12716
Assignees
aanm
Labels
area/k8sImpacts the kubernetes API, or kubernetes -> cilium internals translation layers.kind/community-reportThis was reported by a user in the Cilium community, eg via Slack.kind/featureThis introduces new functionality.pinnedThese issues are not marked stale by our issue bot.sig/policyImpacts whether traffic is allowed or denied based on user-defined policies.
@jimmyjones2

Description

@jimmyjones2
jimmyjones2
opened on Feb 15, 2019

Proposal / RFE

Is your feature request related to a problem?
I'd like to restrict all pods in my Kubernetes cluster from accessing sensitive parts of the corporate network (CIDR ranges) without resorting to a hardware firewall.

Describe the solution you'd like
A cluster admin can define a set of rules that apply to all pod egress. NetworkPolicy/CiliumNetworkPolicy objects controlled by users could further restrict this.

Metadata

Metadata

Assignees

Labels

area/k8sImpacts the kubernetes API, or kubernetes -> cilium internals translation layers.kind/community-reportThis was reported by a user in the Cilium community, eg via Slack.kind/featureThis introduces new functionality.pinnedThese issues are not marked stale by our issue bot.sig/policyImpacts whether traffic is allowed or denied based on user-defined policies.

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions