AdvancedNetworkingSecurity interface
Security profile to enable security features on cilium-based cluster.
Properties
| advanced |
Enable advanced network policies. This allows users to configure Layer 7 network policies (FQDN, HTTP, Kafka). Policies themselves must be configured via the Cilium Network Policy resources, see https://docs.cilium.io/en/latest/security/policy/index.html. This can be enabled only on cilium-based clusters. If not specified, the default value is FQDN if security.enabled is set to true. |
| enabled | Configure Advanced Networking Security features on Cilium clusters. See individual fields for their default values. |
| transit |
Encryption configuration for Cilium-based clusters. Once enabled all traffic between Cilium managed pods will be encrypted when it leaves the node boundary. |
Property Details
advancedNetworkPolicies
Enable advanced network policies. This allows users to configure Layer 7 network policies (FQDN, HTTP, Kafka). Policies themselves must be configured via the Cilium Network Policy resources, see https://docs.cilium.io/en/latest/security/policy/index.html. This can be enabled only on cilium-based clusters. If not specified, the default value is FQDN if security.enabled is set to true.
advancedNetworkPolicies?: stringProperty Value
string
enabled
Configure Advanced Networking Security features on Cilium clusters. See individual fields for their default values.
enabled?: booleanProperty Value
boolean
transitEncryption
Encryption configuration for Cilium-based clusters. Once enabled all traffic between Cilium managed pods will be encrypted when it leaves the node boundary.
transitEncryption?: AdvancedNetworkingSecurityTransitEncryption