Oct 7, 2025 · 15 min read · In Part 2 we leveled up from basic NetworkPolicy to better cluster-wide guardrails using Calico. With global defaults and flow logs, we built something that worked. That’s a solid foundation. Sounds a bit like what I thought of Network Policies befor...
Join discussion
Sep 22, 2025 · 7 min read · CKA Practice Notes – Networking & Services Second part of my Certified Kubernetes Administrator (CKA) preparation series.In the first part, I covered Workloads & Scheduling.This post focuses on Networking & Services, an essential skill set for anyon...
Join discussion
Sep 3, 2025 · 16 min read · In Part 1 we took Kubernetes from “wide open by default” to a clean three-hop app chain. With a handful of NetworkPolicy manifests we locked the cluster down to just the flows the app actually needs: frontend → backend → database, plus DNS. Everythin...
Join discussion
Aug 31, 2025 · 3 min read · It started with a simple deployment. The app was up, pods were running, but the service just wouldn’t respond. Requests vanished into thin air and users saw... nothing. This wasn’t the first time, so I rolled up my sleeves for some hands-on Kubernete...
Join discussion
Aug 27, 2025 · 13 min read · By default, Kubernetes is wide open. Of course you knew that already. Any pod can talk to any other pod, in any namespace, on any port. That makes life easy for anyone putting an app into prod, and just as easy for anyone who compromises one workload...
Join discussion
Jan 10, 2025 · 2 min read · Check following two networkpolicy yaml file, np1.yaml and np2.yaml: # np1.yaml apiVersion: networking.k8s.io/v1 kind: NetworkPolicy metadata: name: np namespace: space1 spec: podSelector: {} policyTypes: - Egress egress: - to: - nam...
Join discussionJan 10, 2025 · 2 min read · Quick recap for network. Details can click the title link or check the official doc. SVC 1. create # target port: listening port inside container # port: service internal port # NodePort: expose external port kubectl expose deployment nginx --name n...
Join discussionJan 3, 2025 · 3 min read · Ingress ingress to make external to access: domain_name:port/path Field: rules.ingressClassName path -> path backend.service.name -> service port -> service port host -> domain name apiVersion: networking.k8s.io/v1 kind: Ingress metadata: ...
Join discussionOct 7, 2024 · 4 min read · Kubernetes, being a powerful orchestration tool, provides a way to manage and enforce rules for network traffic within a cluster through Network Policies. In this blog, we'll explore what a Network Policy is, why it's essential, and how to create a K...
Join discussion
Aug 14, 2024 · 5 min read · Introduction By default, pods in Kubernetes are non-isolated, meaning they can freely communicate with any other pod within the cluster. For example, a frontend pod can interact with both the backend and database pods, the backend pod can communicat...
Join discussion