Network Policy usage is inverted.

It's easier to list the services that you want to connect to, but Network Policy forces you to list all clients that can connect to your pod.

How would you even know that another team plans to connect your apps?

But if Network Policy is not the right tool, then what should you use?

In this KubeFM podcast, you will explore:

• How Network Policies are not as bad as you might think, but they are low-level APIs that are not always practical to use directly.

• Intent-based Access Control (IBAC) as a higher-level abstraction to describe your network segmentation requirements.

• How you can use IBAC to generate Network Policies, Istio Authorization Policies, AWS IAM & Roles, and more.

More info

• Find all the links and info for this episode here: https://ku.bz/Xhd2xKDH7

• Interested in sponsoring an episode? Learn more.