Yuvaraj K:
Create a new NetworkPolicy named allow-port-from-namespace in the existing namespace big-corp.
Ensure that the new NetworkPolicy allows Pods in namespace corp-net to connect to port 8080 of Pods in namespace big-corp.
Further ensure that the new NetworkPolicy:
does not allow access to Pods, which don’t listen on port 8080
does not allow access from Pods, which are not in namespace corp-net
Soution:
apiVersion: http://networking.k8s.io/v1|networking.k8s.io/v1
kind: NetworkPolicy
metadata:
name: test-network-policy
namespace: big-corp
spec:
podSelector: {}
policyTypes:
- Ingress
ingress: - from:
-
namespaceSelector:
ports: - protocol: TCP
port: 8080
-
namespaceSelector: