Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add NetworkPolicy manifests to defend pods #4

Open
JossWhittle opened this issue Mar 7, 2024 · 0 comments · May be fixed by #10
Open

Add NetworkPolicy manifests to defend pods #4

JossWhittle opened this issue Mar 7, 2024 · 0 comments · May be fixed by #10
Assignees
@rdash99
Labels
enhancement New feature or request helm

Comments

@JossWhittle
Copy link
Member

JossWhittle commented Mar 7, 2024
edited
Loading

https://kubernetes.io/docs/concepts/services-networking/network-policies/

  • Web pod

    • Ingress from Controller pod and through the Web ingress object
    • Egress to Guacd pod, Database pods, and to external LDAP server url

  • Database pods

    • Ingress from Controller pod and Web pod
    • Egress to no one

  • Guacd pod

    • Ingress from Web pod
    • Egress to the virtual machines... Might need to leave this open to all at first and try locking it down later.

  • Controller pod

    • Ingress from no one
    • Egress to Web pod, Database pods, and to external LDAP server url
@JossWhittle JossWhittle added enhancement New feature or request helm labels Mar 7, 2024
@rdash99 rdash99 self-assigned this Mar 14, 2024
@rdash99 rdash99 linked a pull request Mar 21, 2024 that will close this issue
feat(guacamole-chart): Add NetworkPolicy manifests to defend pods #10
Draft
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@rdash99 rdash99

Labels
enhancement New feature or request helm
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

feat(guacamole-chart): Add NetworkPolicy manifests to defend pods SwanseaUniversityMedical/Guacamole
2 participants
@JossWhittle @rdash99