This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(156.8, 54%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ER%3C/text%3E%3C/svg%3E)
Not a question, but there's no place for bug reports
Azure network policy manager does not enforce defined network policies on the local node.
For example if you define a network policy to filter out all egress traffic from the pod, the traffic going toward the local node private ip (not the public one if any) won't be filtered out.
Consequently any listening service on the private ip can be connected to (containerd, kubelet, ssh…).
This only concerns Azure NPM, not Calico if you choose this option instead
nvm found the place to report bug on the software component on github
Hello Raphael
Thanks for confirming that you have reported the bug.