About security in microk8s

Hi everyone! I’m running a microk8s 1.20/stable and after I enabled firewall it warns me to allow pod traffic adding a rule for input and output to application vxlan.calico.
I exposed two nodePort services and works fine, but what else I’m allowing with this rule?

There is a tool that I could use like kube-bench? What do you recomend me to read about security for microk8s?

thanks!