Policy for Kubernetes services

Apply Calico policy to Kubernetes node ports, and to services that are exposed externally as cluster IPs.

Restrict access to Kubernetes node ports using Calico Enterprise global network policy. Follow the steps to secure the host, the node ports, and the cluster.

Apply policy to services exposed externally as cluster IPs

Expose Kuberenetes service cluster IPs over BGP using Calico Enterprise, and restrict who can access them using Calico Enterprise network policy.

Use cases

Install and upgrade

Networking

Network policy

Visibility and troubleshooting

Multi-cluster management

Threat defense

Compliance and security

Operations

Reference

Release notes

Policy for Kubernetes services