NPRC DENY all traffic to an application

DENY all traffic to an application

[tan@kmaster ~]$ kubectl run web --image=nginx --labels app=web --expose --port 80



[tan@kmaster ~]$ kubectl get all -n default -o wide
NAME                       READY   STATUS    RESTARTS   AGE   IP                NODE     NOMINATED NODE   READINESS GATES
pod/web-7bdd685f58-vqhd2   1/1     Running   0          12m   192.168.195.129   knode1   <none>           <none>


NAME                 TYPE        CLUSTER-IP     EXTERNAL-IP   PORT(S)   AGE   SELECTOR
service/kubernetes   ClusterIP   10.96.0.1      <none>        443/TCP   24h   <none>
service/web          ClusterIP   10.102.72.61   <none>        80/TCP    14m   app=web


NAME                  READY   UP-TO-DATE   AVAILABLE   AGE   CONTAINERS   IMAGES   SELECTOR
deployment.apps/web   1/1     1            1           14m   web          nginx    app=web

NAME                             DESIRED   CURRENT   READY   AGE   CONTAINERS   IMAGES   SELECTOR
replicaset.apps/web-7bdd685f58   1         1         1       14m   web          nginx    app=web,pod-template-hash=7bdd685f58

$ cat net_policies/web-deny-all.yaml 
kind: NetworkPolicy
apiVersion: networking.k8s.io/v1
metadata:
  name: web-deny-all
spec:
  podSelector:
    matchLabels:
      app: web
  ingress: []

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

NPRC DENY all traffic to an application

Clone this wiki locally