apiVersion: networking.k8s.io/v1
kind: NetworkPolicy
metadata:
name: default-deny
spec:
podSelector: {}
policyTypes:
- Ingress
apiVersion: networking.k8s.io/v1
kind: NetworkPolicy
metadata:
name: allow-all
spec:
podSelector: {}
ingress:
- {}
[*** ~]$ kubectl get networkpolicy np-denyall-zhongyaozhiji -n zhongyaozhiji -o yaml
apiVersion: extensions/v1beta1
kind: NetworkPolicy
metadata:
creationTimestamp: 2018-03-29T04:53:35Z
generation: 1
name: np-denyall-zhongyaozhiji
namespace: zhongyaozhiji
resourceVersion: "26581594"
selfLink: /apis/extensions/v1beta1/namespaces/zhongyaozhiji/networkpolicies/np-denyall-zhongyaozhiji
uid: 23970025-330d-11e8-ab71-6c92bf21ade4
spec:
podSelector: {}
policyTypes:
- Ingress
对比
[*** ~]# kubectl get networkpolicy test001-denyall -n test001 -o yaml
apiVersion: extensions/v1beta1
kind: NetworkPolicy
metadata:
creationTimestamp: 2018-03-29T03:21:56Z
generation: 1
name: test001-denyall
namespace: test001
resourceVersion: "1135824"
selfLink: /apis/extensions/v1beta1/namespaces/test001/networkpolicies/test001-denyall
uid: 55713168-3300-11e8-9b8a-000c299b4f90
spec:
podSelector: {}
policyTypes:
- Ingress
[*** ~]$ kubectl get networkpolicy np-allowself-zhongyaozhiji -n zhongyaozhiji -o yaml
apiVersion: extensions/v1beta1
kind: NetworkPolicy
metadata:
creationTimestamp: 2018-03-29T04:53:36Z
generation: 1
name: np-allowself-zhongyaozhiji
namespace: zhongyaozhiji
resourceVersion: "26581596"
selfLink: /apis/extensions/v1beta1/namespaces/zhongyaozhiji/networkpolicies/np-allowself-zhongyaozhiji
uid: 23d54a80-330d-11e8-ab71-6c92bf21ade4
spec:
ingress:
- from:
- namespaceSelector:
matchLabels:
namespace: zhongyaozhiji
podSelector: {}
policyTypes:
- Ingress
对比
[*** ~]# kubectl get networkpolicy test001-allowself -n test001 -o yaml
apiVersion: extensions/v1beta1
kind: NetworkPolicy
metadata:
creationTimestamp: 2018-03-29T03:21:56Z
generation: 1
name: test001-allowself
namespace: test001
resourceVersion: "1135825"
selfLink: /apis/extensions/v1beta1/namespaces/test001/networkpolicies/test001-allowself
uid: 557afb9c-3300-11e8-9b8a-000c299b4f90
spec:
ingress:
- from:
- namespaceSelector:
matchLabels:
namespace: test001
podSelector: {}
policyTypes:
- Ingress
[*** ~]$ kubectl get networkpolicy allow-extra-ip-zhongyaozhijiextra-ip-default -n zhongyaozhiji -o yaml
apiVersion: extensions/v1beta1
kind: NetworkPolicy
metadata:
creationTimestamp: 2018-03-29T04:53:36Z
generation: 1
name: allow-extra-ip-zhongyaozhijiextra-ip-default
namespace: zhongyaozhiji
resourceVersion: "26581597"
selfLink: /apis/extensions/v1beta1/namespaces/zhongyaozhiji/networkpolicies/allow-extra-ip-zhongyaozhijiextra-ip-default
uid: 23e969a8-330d-11e8-ab71-6c92bf21ade4
spec:
ingress:
- from:
- ipBlock:
cidr: 0.0.0.0/0
podSelector: {}
policyTypes:
- Ingress
React
Typescript
Django
Laravel
Facebook
Microsoft
Google
Alibaba
D3
Tencent