K
Q

Monitor Calico network policies behavior

6/27/2018

How could I monitor the network policies behavior?

I have a k8s cluster with calico as SDN.

For example I create a network policy to deny traffic from a set of IPs.

I try to make some executions from those IPs and they fail.

Where can I see that that traffic is being rejected because a Network policy?

Thank you.

-- Jxadro
calico
kubernetes

Similar Questions

Master - Worker Node communication in kubernetes
Kubernetes - Docker layer across pods
Kubernetes log location inside the pod
Kubernetes docker process inside pod
livenessProbe seems not to be executed
What is the proper way to reference a Dockerfile when creating a Deployment in Kubernetes?

1 Answer

6/27/2018

There is no such possibility by default, but you can try to follow this instruction to create a user interface that shows blocked and allowed connections in real time.

Also, Getting started with Calico could be useful.

You can find Calico logs in the /var/log/calico folder on the Calico pod.

More about logging please find here: Calico Logging.

-- Akar
Source: StackOverflow