cnaize
Reputation: 3149
Kubernetes: pods network isolation
We need to know about pods network isolation.
Is there a possibility to access one pod from another one in cluster? Maybe by namespace dividing?
We also need pod's membership in local networks, which are not accessible from outside.
Any plans? Is it will be soon?
Upvotes: 1
Views: 1203
Answers (1)
Robert Bailey
Reputation: 18230
In a standard Kubernetes installation, all pods (even across namespaces) share a flat IP space and can all communicate with each other.
To get isolation, you'll need to customize your install to prevent cross namespace communication. One way to do this is to use OpenContrail. They recently wrote a blog post describing an example deployment using the Guestbook from the Kubernetes repository.
Upvotes: 1
Related Questions
- Pods in a kubernetes
- Understanding Kubernetes networking, pods with same ip
- Allowing Pods to communicate with other pods via Network Policies
- Kubernetes pod to pod cluster Network Policy
- Kubernetes multiple pods communication
- Is it possible to have isolated networks in a Kubernetes cluster?
- Direct pod networking with Kubernetes
- How to run two pods in exclusive nodes?
- Pod Communication
- hostnetwork pod - only 1 container should expose to the internet