Thanks for posting your question in the Microsoft Q&A forum.
Differences between Network Policy engines: Cilium, Azure NPM, and Calico:
The key differences are:
- Calico supports a richer set of features like global network policies, network sets, and host endpoints, while Azure Network Policy Manager has a more basic set of capabilities.
- Calico supports both Azure CNI and kubenet networking, while Azure Network Policy Manager only supports Azure CNI.
- Both are supported by the Azure support and engineering teams.
You can use either Azure Network Policy Manager or Calico network policy:
Azure Network Policy Manager:
- Create network policies in the Azure portal or using the Azure CLI.
- Policies are defined using Kubernetes network policy specification.
- Supports all policy types like
NetworkPolicy
, NetworkPolicy.Spec.Egress
, and NetworkPolicy.Spec.Ingress.
Calico Network Policy:
- Create network policies using the
calicoctl
CLI tool or Kubernetes manifests.
- Calico provides an extended policy model with features like global network policies and network sets.
- Supports all Kubernetes network policy types, as well as the Calico-specific extended policy model.
Please don't forget to close up the thread here by upvoting and accept it as an answer if it is helpful