Vishesh Agarwal
Reputation: 141
Select all pods running on a K8s node for Cilium Policy
I am trying to use Cilium Egress Gateway Policy in my K8s cluster. I want to apply policy on all pods scheduled on Node X. How can I do that?
Using the podSelector field, I can pick pods which matchLabels. Theer is also a special label io.kubernetes.pod.namespace to select pods in a namespace. But I don't know how to filter for the pod's scheduled node (spec.nodeName).
Another possible solution is that I write a daemon set, which will get all pods on the node, and then call api-server to add a label for nodeName. But I need guidance how to write such daemon set, or if it's even secure to have the api-server credentials on the node.
Upvotes: 1
Views: 390
Answers (0)
Related Questions
- How do i know which pods are covered by a network policy in k8s
- Kubernetes API - Get Pods on Specific Nodes
- How to define kuberenetes nodes to select specific pod's only nodeSelector
- How to select a specific pod for a service in Kubernetes
- In K8s find what nodes do pods exist in
- How do I list all pods controlled by deployments only?
- Require that k8s pods have a certain label before they run on certain nodes
- Get specific Kubernetes pods
- Specify the Pods that a Node should run
- K8s How to deploy pod 1 per specific node, not all node in cluster