Great tutorial thanks. Now it might be my lack of experience, but in my uninformed opinion, not being able to specify deny rules is a feature, not a limitation. Security-wise, denying all connection by default, and having to explicitly declare the accepted connections is the right way to go, in my opinion.
Really great speech on Kubernetes Network Policies, your way in discussion topics is simple! thanks for that. but I have a small question, in case I have around 15 Namespace with around 50 Pods inside them, how I can know which pod communicates with another? How to start implementing a Network Policy in such a big cluster ? is there any best practice or road map to follow? Thanks again!
Great tutorial on network policies, straight forward and clear explanations! It would be nice if you provide your YAML files for an easy setup of a testing environment ;)
@@joshrosso just another question: If I have two pods A and B and I allow A to send egress to B and B accepts this ingress. How about the "return way"? Do I need to allow B to egress to A and A to accept ingress from B? Or is the way vice versa automatically allowed?