Exploring cilium netpolicies.
This commit is contained in:
parent
aae23883b7
commit
f2f23345ef
1 changed files with 7 additions and 0 deletions
|
|
@ -36,6 +36,13 @@ spec:
|
|||
enabled: true
|
||||
ipam:
|
||||
mode: kubernetes
|
||||
policyEnforcementMode: always # enforce network policies
|
||||
policyAuditMode: true # do not block traffic
|
||||
hostFirewall:
|
||||
enabled: true # enable host policies
|
||||
extraConfig:
|
||||
allow-localhost: policy # enable policies for localhost
|
||||
|
||||
kubeProxyReplacement: true
|
||||
securityContext:
|
||||
capabilities:
|
||||
|
|
|
|||
Reference in a new issue