Skip to content
/ k8s-nft-npc Public

A Kubernetes Network Policy Controller based on pure nftables

License

MIT license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

lorenz/k8s-nft-npc

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
nfds
nfds
 
 
nftctrl
nftctrl
 
 
ranges
ranges
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 
main.go
main.go
 
 

Repository files navigation

k8s-nft-npc

A Kubernetes Network Policy Controller based on pure nftables

⚠️ This is alpha-level software, no guarantees for functionality or correctness right now.

Features

  • Fully dual-stack (IPv4/IPv6)
  • No dependency on anything but the K8s API and the Linux kernel (no nftables CLI or shared linking)
  • Event-based, reacts very quickly
  • Atomic nftables updates

Usage

Either run it in a container with host network namespace access or run it as a separate binary with the --kubeconfig option pointing to a valid kubeconfig to contact the API server. Currently no precompiled binaries are provided, build them using the standard Go toolchain.

About

A Kubernetes Network Policy Controller based on pure nftables

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages