Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Add API server NetworkPolicy to support a potential deny all egress #615

Draft
wants to merge 32 commits into
base: main
Choose a base branch
from

Conversation

kabicin
Copy link
Contributor

@kabicin kabicin commented Feb 22, 2024

  • Add a permissive NetworkPolicy Egress so that LTPA Job (which makes a request to https://kubernetes.default.svc in create_ltpa_keys.sh) would still work under a Deny all egress NetworkPolicy.
  • Adds the permissive NetworkPolicy to the WLO controller manager's Pod.
  • Adds a permissiveNetworkPolicy Egress for Kubernetes CoreDNS

@kabicin kabicin marked this pull request as draft February 26, 2024 15:06
@kabicin kabicin marked this pull request as ready for review February 26, 2024 19:29
@kabicin kabicin marked this pull request as draft March 1, 2024 19:59
@kabicin kabicin marked this pull request as ready for review March 7, 2024 15:25
@leochr leochr requested a review from arturdzm March 8, 2024 17:29
@kabicin kabicin force-pushed the ltpa-network-policy branch from 8b9775f to 4daef0b Compare March 28, 2024 15:43
@kabicin kabicin force-pushed the ltpa-network-policy branch from 13fa385 to b418232 Compare April 23, 2024 17:08
@kabicin kabicin force-pushed the ltpa-network-policy branch from a31a3b4 to fff50df Compare May 3, 2024 19:49
@kabicin kabicin marked this pull request as draft September 9, 2024 15:29
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant