'declare-network-policy' from kubernetes documentation not working

rohanshinde08 · September 15, 2019, 7:36am

Hello World,

Problem statement: Wanted to secure service[actually pod] by limiting access to it by other services/pods inside the same cluster/namespace. I have landed on this below page and tried producing the same in my cluster. It did not work. Even I applied network policy as shown in the example in the below doc, it did not limit access to the new pod which got created without any access label.
https://kubernetes.io/docs/tasks/administer-cluster/declare-network-policy/

A couple of guys from last local KubeMeetup tried it on their cluster and it did not work for them too.
It sounds like a bug in this solution, someone please correct it?

thockin · September 15, 2019, 3:06pm

Do you have a network policy agent running, such as Calico? NP API requires a plugin that implements it.

rohanshinde08 · September 16, 2019, 5:03am

Thank you for the the pointer, I am using AKS [Azure K8s service] and it use Flannel as a default which does not support NP. That could be reason NP is not getting enforce. I will add Calico plugin. Thanks again!

Topic		Replies	Views
NetworkPolicy Deny All not working General Discussions network	1	739	May 13, 2022
Kubernetes.io Blog: Introducing kube-iptables-tailer: Better Networking Visibility in Kubernetes Clusters General Discussions k8s-blog	0	838	April 19, 2019
Kubernetes communication between pods and external machines is sometimes blocked by UFW General Discussions network	2	2940	September 5, 2023
Why ImagePolicyWebhook cannot run as a pod itself? General Discussions apiserver	4	823	November 28, 2023
PodSecurityPolicies in kubeadm cluster General Discussions	7	4108	October 5, 2019

'declare-network-policy' from kubernetes documentation not working

Related Topics