Doc error in 04-deny-traffic-from-other-namespaces

Question

Doc error in 04-deny-traffic-from-other-namespaces

Eric-Fontana-Bose opened this issue 6 years ago · comments

Eric Fontana commented 6 years ago

You .gif has a label on the center as namespace:default and it should be namespace:secondary

I don't have the source to the .gif or I would have opened a PR.

The image needing fixing: https://github.com/ahmetb/kubernetes-network-policy-recipes/blob/master/img/4.gif

Cyril Scetbon commented 5 years ago

See #46

Ahmet Alp Balkan · Answer 1 · Sat May 12 2018 00:42:06 GMT+0800 (China Standard Time)

Thanks for noticing. I don't think in many cases example gifs match the actual code. GIFs are meant to illustrate use cases. In that gif, there's namespaces foo & bar, too. But in the example, they don't exist.

Eric Fontana · Answer 2 · Sat May 12 2018 01:44:30 GMT+0800 (China Standard Time)

This repo has been very helpful. One thing worth mentioning is what/how policies are processed when you have multiple yaml files applied as different policy names in the same namespace, i assume those are logically OR'd as well.

Ahmet Alp Balkan · Answer 3 · Sat May 12 2018 01:59:30 GMT+0800 (China Standard Time)

tl;dr of network policies is:

if there's one rule allowing traffic, it will be allowed.
if there's no rule matching to the traffic, it's allowed.

Ahmet Alp Balkan · Answer 4 · Sat May 12 2018 01:59:46 GMT+0800 (China Standard Time)

I have a link to my kubecon talk in the readme, that might help you better, too.

Cyril Scetbon · Answer 5 · Fri Aug 09 2019 12:35:04 GMT+0800 (China Standard Time)

I think instead of closing it you should then name the namespace default in the network policy and the text.