zozo6015
Reputation: 577
why does kubernetes networkPolicy delays the request
I have a networkPolicy attached to a pod that looks like this:
apiVersion: networking.k8s.io/v1
kind: NetworkPolicy
metadata:
name: api-egress
spec:
podSelector:
matchLabels:
app:
egress:
- ports:
- protocol: TCP
port: 3306
to:
- ipBlock:
cidr: 10.100.100.199/32
- ports:
- protocol: TCP
port: 443
to:
- ipBlock:
cidr: 10.100.100.198/32
- ports:
- protocol: TCP
port: 6379
to:
- podSelector:
matchLabels:
app: redis
- ports:
- protocol: TCP
port: 5672
to:
- podSelector:
matchLabels:
app.kubernetes.io/instance: queue
- ports:
- protocol: TCP
port: 8118
to:
- podSelector:
matchLabels:
app: support
- ports:
- protocol: TCP
port: 8000
to:
- podSelector:
matchLabels:
app: ocket
policyTypes:
- Egress
When the network policy is applied I can see on the application side that there is a delay of 2.5minutes in one auth request to the api while if it's not there the same request is finished in 861ms.
Anyone can explain why is this delay there and how can I improve it?
Upvotes: 1
Views: 173
Answers (0)
Related Questions
- error validating data: [ValidationError(Ingress.spec.rules[0].http.paths[0].backend): eks v1.22
- What's the difference between Docker Compose and Kubernetes?
- Is there anyone to get dynamic env value in seprate pod kubernetes k3s
- Pod can not connect to Cisco Packet Tracer API
- Exposing kubernetes Dashboard with clusterIP service externally using Ingress rules
- You're speaking plain HTTP to an SSL-enabled server port in Kubernetes
- What's the difference between Apache's Mesos and Google's Kubernetes
- service in a pod(envoy proxy enabled) cannot connect to redis pod