Uploaded image for project: 'Red Hat Advanced Cluster Security'
  1. Red Hat Advanced Cluster Security
  2. ROX-27696

External IPs GA [4.8]

XMLWordPrintable

    • Product / Portfolio Work
    • XL
    • False
    • Hide

      None

      Show
      None
    • False
    • Not Selected
    • 0% To Do, 50% In Progress, 50% Done
    • Hide
      We announce GA of External IP visibility feature. This enhancement provides crucial insight into your cluster's external communications.

      Now, you can visualize the exact external IP addresses your deployments are communicating with. This significantly improves your ability to understand external connections, identify potential threats, and validate network policies.

      By default, this feature is disabled. However, once enabled, you will see external IPs in the Network Graph as well as Unauthorized Network Flow violations will automatically include detailed external IP information, streamlining your investigation process.
      Show
      We announce GA of External IP visibility feature. This enhancement provides crucial insight into your cluster's external communications. Now, you can visualize the exact external IP addresses your deployments are communicating with. This significantly improves your ability to understand external connections, identify potential threats, and validate network policies. By default, this feature is disabled. However, once enabled, you will see external IPs in the Network Graph as well as Unauthorized Network Flow violations will automatically include detailed external IP information, streamlining your investigation process.
    • 0

      Scope for GAing External IPs:

      Goal 1: Ensure external IPs can be viewed in the network graph's side panel.

      This means in practice 2 things:

       1. When a customer click on the network graph 'External Entities', the side panel provides granular information about the IPs in that bucket. 

      2. When a customer clicks on a deployment that communicates with External Entities, it expected that 'Flows' shows both Internal and External flows tabs. Each of the tabs will filter only the flows relevant. And external flows tab will include granular IP information if available. 

      Baselines will not show granular IPs even through external IPs is available. 

      Goal 2: Fix UI and data bugs reported in 4.7 ROX-28021

      • Fix UI and data bugs reported in 4.7 

      Goal 3: Provide additional IP context to Unexpected Network Flow violations  ROX-28546

      • Customer problem: As a customer, who received unexpected network flow violations, I want to know the exact IP behind. 

      Goal 4: Extensive testing and perf-scale testing
      **

      Out of scope for External IP GAs:

      • Anomalous network flows will keep working the same way as in 4.7 = in case a external network flow is part of the baseline, it will only compare the port and protocol.
      • Runtime network policy generation will keep working the same way as in 4.7 = Network policies will only be generated for external IPs taking into consideration port and protocol. 
      • Visibility on CIDR blocks  ROX-24987

       

       

        1. image-2025-03-27-14-09-04-935.png
          image-2025-03-27-14-09-04-935.png
          429 kB
        2. image-2025-03-27-14-11-12-960.png
          image-2025-03-27-14-11-12-960.png
          375 kB
        3. image-2025-03-27-15-50-30-046.png
          image-2025-03-27-15-50-30-046.png
          70 kB

              ghutton@redhat.com Giles Hutton
              ghutton@redhat.com Giles Hutton
              Maria Simon Marcos Maria Simon Marcos
              ACS Collector
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Created:
                Updated:
                Resolved: