Network misconfigurations

GKE intra-node visibility is disabled

Risk Level

Informational (4)

Platform(s)
Compliance Frameworks

Description

Intranode visibility configures networking on each node in the cluster so that traffic sent from one Pod to another Pod is processed by the cluster's Virtual Private Cloud (VPC) network, even if the Pods are on the same node. Orca has detected that {GcpGkeCluster} does not have the ""intra-node visibility"" option selected.

  • Recommended Mitigation

    We recommend enabling the ""intra-node visibility"" feature for the cluster. For further information, visit: <a href="https://cloud.google.com/kubernetes-engine/docs/how-to/intranode-visibility" target="_blank" rel="noopener noreferrer">https://cloud.google.com/kubernetes-engine/docs/how-to/intranode-visibility</a>

Need help?

Get a free Security Risk Assessment. Start today

See Orca in action See Orca in action-> View a 10 minute recorded demo or sign up for a personalized one-on-one walk-through.