Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Microsoft and Tigera Collaborating to Secure Co...

Microsoft and Tigera Collaborating to Secure Container Networking

I presented these slides at Microsoft Build 2018, in collaboration with Saurya Das, product manager for Azure Kubernetes Service.

Andy Randall

May 08, 2018
Tweet

More Decks by Andy Randall

Other Decks in Technology

Transcript

  1. apiVersion: networking.k8s.io/v1 kind: NetworkPolicy metadata: name: my-network-policy namespace: my-namespace spec:

    podSelector: matchLabels: role: db ingress: - from: - podSelector: matchLabels: role: frontend ports: - protocol: TCP port: 6379 Role: db Role: db role: db role: frontend role: helper TCP 6379 role: frontend
  2. apiVersion: networking.k8s.io/v1 kind: NetworkPolicy metadata: name: my-network-policy namespace: my-namespace spec:

    podSelector: matchLabels: role: db ingress: - from: - podSelector: matchLabels: role: frontend ports: - protocol: TCP port: 6379 Role: db Role: db role: db role: frontend role: helper TCP 6379 role: frontend
  3. apiVersion: networking.k8s.io/v1 kind: NetworkPolicy metadata: name: my-network-policy namespace: my-namespace spec:

    podSelector: matchLabels: role: db ingress: - from: - podSelector: matchLabels: role: frontend ports: - protocol: TCP port: 6379 Role: db Role: db role: db role: frontend role: helper TCP 6379 role: frontend
  4. apiVersion: networking.k8s.io/v1 kind: NetworkPolicy metadata: name: my-network-policy namespace: my-namespace spec:

    podSelector: matchLabels: role: db ingress: - from: - podSelector: matchLabels: role: frontend ports: - protocol: TCP port: 6379 Role: db Role: db role: db role: frontend role: helper TCP 6379 role: frontend
  5. apiVersion: networking.k8s.io/v1 kind: NetworkPolicy metadata: name: my-network-policy namespace: my-namespace spec:

    podSelector: matchLabels: role: db ingress: - from: - podSelector: matchLabels: role: frontend ports: - protocol: TCP port: 6379 Role: db Role: db role: db role: frontend role: helper TCP 6379 role: frontend
  6. M ulti-cloud and legacy Zero trust Enterprise control and com

    pliance O perationally sim ple Secure Application Connectivity