C-0011 - Network policies

Network policies

Framework

Description of the the issue

We have a MITRE check that fails if there are no policies defined for a specific namespace (cluster internal networking).

Related resources

namespaces, networkpolicies

What does this control test

Remediation

Define network policies or use similar network protection mechanisms.

Example

apiVersion: networking.k8s.io/v1
kind: NetworkPolicy
metadata:
  name: test-network-policy
  namespace: default        # we make sure "NetworkPolicy" exists on this namespace

Did this page help you?