Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/lorenz/k8s-nft-npc

A Kubernetes Network Policy Controller based on pure nftables
https://github.com/lorenz/k8s-nft-npc

Last synced: about 24 hours ago
JSON representation

A Kubernetes Network Policy Controller based on pure nftables

Host: GitHub
URL: https://github.com/lorenz/k8s-nft-npc
Owner: lorenz
License: mit
Created: 2024-12-27T21:09:25.000Z (25 days ago)
Default Branch: main
Last Pushed: 2024-12-28T13:27:39.000Z (24 days ago)
Last Synced: 2024-12-28T14:24:57.571Z (24 days ago)
Language: Go
Size: 24.4 KB
Stars: 0
Watchers: 1
Forks: 0
Open Issues: 0
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

README

        # k8s-nft-npc

*A Kubernetes Network Policy Controller based on pure nftables*

:warning: This is alpha-level software, no guarantees for functionality or correctness right now.

## Features

* Fully dual-stack (IPv4/IPv6)

* No dependency on anything but the K8s API and the Linux kernel (no nftables CLI or shared linking)

* Event-based, reacts very quickly

* Atomic nftables updates

## Usage

Either run it in a container with host network namespace access or run it as a

separate binary with the `--kubeconfig` option pointing to a valid kubeconfig

to contact the API server. Currently no precompiled binaries are provided,

build them using the standard Go toolchain.