Network misconfigurations

GKE with Network Policy disabled

Risk Level

Informational (4)

Platform(s)
Compliance Frameworks

Description

By default, all pod to pod traffic within a cluster is allowed. Network Policy creates a pod- level firewall that can be used to restrict traffic between sources. It was detected that {GcpGkeCluster} does not have Network Policy enabled.
  • Recommended Mitigation

    Consider enabling Network Policy for {GcpGkeCluster}. For more info: <a href="https://cloud.google.com/kubernetes-engine/docs/how-to/network-policy" target="_blank" rel="noopener noreferrer">https://cloud.google.com/kubernetes-engine/docs/how-to/network-policy</a>