Implement Right Network Segmentation
Segment the cluster using the cloud provider security toolchain such as security groups. Monitor Kubernetes Network Policies and see how they are layered on top of the Security Groups, enabling policies to be easily tuned and refined through application labeling and apply to the relevant tier in the organization. Control who can access the Kubernetes API server at the network level and segment the cluster worker nodes: limit, control & monitor node-to-node communications using security groups.
Segment microservices by using Kubernetes network policies: With Alcide, Kubernetes Network Policies are automatically imported and visualized on the connectivity map, enabling implementation of network segmentation, reducing complexity and minimizing the need to manage policies through the Kubernetes native CLI.
The simplified Alcide platform helps to gather, monitor and manage all your rule-based instance policies while providing a high-level picture and granular policy details to help users ensure the right policies are set to protect the Kubernetes workloads.