Network Policy
Workloads created by vCluster are able to communicate with other workloads in the host cluster through their cluster IPs. Configure network policies when you want to isolate namespaces and do not want the pods running inside the virtual cluster to have access to other workloads in the host cluster.
Config reference
networkPolicy required object pro
NetworkPolicy specifies network policy options.
networkPolicy required object proenabled required boolean pro
Enabled defines if the network policy should be deployed by vCluster.
enabled required boolean profallbackDns required string pro
fallbackDns required string prooutgoingConnections required object pro
outgoingConnections required object proipBlock required object pro
IPBlock describes a particular CIDR (Ex. "192.168.1.0/24","2001:db8::/64") that is allowed
to the pods matched by a NetworkPolicySpec's podSelector. The except entry describes CIDRs
that should not be included within this rule.
ipBlock required object procidr required string pro
cidr is a string representing the IPBlock
Valid examples are "192.168.1.0/24" or "2001:db8::/64"
cidr required string proexcept required string[] pro
except is a slice of CIDRs that should not be included within an IPBlock
Valid examples are "192.168.1.0/24" or "2001:db8::/64"
Except values will be rejected if they are outside the cidr range
except required string[] proannotations required object pro
Annotations are extra annotations for this resource.
annotations required object prolabels required object pro
Labels are extra labels for this resource.
labels required object pro