Kubernetes - Service Mesh
How can you combine Envoy sidecar proxies with Kubernetes Network Policies to enhance pod-to-pod communication security?
How can you combine Envoy sidecar proxies with Kubernetes Network Policies to enhance pod-to-pod communication security?
hard📝 Application Q9 of 15
Step-by-Step Solution
Solution:
Step 1: Understand Network Policies and Envoy roles
Network Policies restrict traffic at Kubernetes level; Envoy filters at application level.Step 2: Combine for layered security
Restrict traffic to Envoy ports so all pod communication passes through Envoy.Final Answer:
Use Network Policies to restrict traffic to Envoy ports only -> Option AQuick Check:
Network Policies + Envoy ports restriction = enhanced security [OK]
Quick Trick: Restrict traffic to Envoy ports with Network Policies [OK]
Common Mistakes:
- Disabling Envoy removes proxy benefits
- Allowing all traffic defeats Network Policies
- Blocking Envoy traffic breaks proxy function
Master "Service Mesh" in Kubernetes
Want More Practice?
15+ quiz questions · All difficulty levels · Free
Free Signup - Practice All QuestionsMore Kubernetes Quizzes