Uploaded image for project: 'OpenShift Request For Enhancement'
  1. OpenShift Request For Enhancement
  2. RFE-4830

Any Pod (OpenShift/application) in OpenShift should not generate any Traffic Trying to Reach Internet. 

    XMLWordPrintable

Details

    • Feature Request
    • Resolution: Unresolved
    • Undefined
    • None
    • 4.13
    • SDN
    • False
    • None
    • False
    • Not Selected
    • x86_64
    • 0
    • 0% 0%

    Description

      1. Proposed title of this feature request
          Any Pod (OpenShift/application) in OpenShift should not generate any Traffic Trying to reach Internet. 

       

      2. What is the nature and description of the request?

      Customer does not want any pod to initiate or generate any traffic such that such that there is no need to employ EgressFirewalls or NetworkPolicies to block any generated traffic within the cluster. Also pod should not generate any such traffic that will try to reach the Internet. The expectation is to have something like a feature-flag that can be toggled to allow/disallow the http requests to internet from all pods (including application pods) running in the OpenShift cluster.

       

      3. Why does the customer need this? (List the business requirements here)
         Customer's environment is an air-gapped cluster. So Customer doesn't even want any pod (openshift/application) to generate any traffic that will try to reach the internet.

       

      4. List any affected packages or components.
         NA

      Attachments

        Activity

          People

            ddharwar@redhat.com Deepthi Dharwar
            rhn-support-kvaswani Kamlesh Vaswani
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

            Dates

              Created:
              Updated: