vcluster icon indicating copy to clipboard operation
vcluster copied to clipboard

Published 20 hours ago verified publisher icon loft-sh

To comply with nsa-cisa-kubernetes-hardening-guidance

Open calvinroyston opened this issue 4 years ago • 2 comments
trafficstars

https://kubernetes.io/blog/2021/10/05/nsa-cisa-kubernetes-hardening-guidance/

calvinroyston avatar Oct 07 '21 07:10 calvinroyston

Would you mind providing a little more details on what you think needs to be changed to be compliant?

LukasGentele avatar Oct 07 '21 11:10 LukasGentele

@LukasGentele . for example it would be secure to apply network policies on vcluster creation to only allow traffic required for vcluster operation and block rest of the traffic .

calvinroyston avatar Oct 13 '21 16:10 calvinroyston

This is probably solved now with the Isolated mode. I am happy to reopen if you point out what is still missing.

matskiv avatar Oct 14 '22 14:10 matskiv