Skip to content

Latest commit

 

History

History
 
 

08

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
k8s-1
k8s-1
 
 
ssh-keys
ssh-keys
 
 
vpc
vpc
 
 
worker
worker
 
 
README.MD
README.MD
 
 
env.hcl
env.hcl
 
 

README.MD

Cilium NetworkPolicy L7.

You have a corporate portal ( k8s service portal in production namespace)

You need to create Cilium NetworkPolicy api-access provide these requirements

docs

examples

the portal APIs:

/public/* - open all method from all cluster

/private/* - open all method from all in finance namespace

for checking access you can use curl from pod in the finance namespace or external namespace

like this:

private api from finance namespace

k exec  -n finance finance  --  curl http://portal.production/private/api123 --connect-timeout 1

public api from finance namespace

k exec  -n finance finance  --  curl http://portal.production/public/api123  --connect-timeout 1

private api from external namespace

k exec  -n external external  --  curl http://portal.production/private/api123 --connect-timeout 1

public api from external namespace

k exec  -n external external  --  curl http://portal.production/public/api123  --connect-timeout 1