Introduction

Deka Guard is one of Service Portal Cloudeka that allows you to create, manage, and granularly enforce network communication rules in a Kubernetes environment. There are several main functions provided by Deka Guard including the following.

1. Filtering traffic between pods (Ingress & Egress)

   You can restrict pods to only communicate with certain pods, certain IPs, or certain ports.

2. Label and namespace-based network segmentation.

   You can define what labels are allowed to communicate with each other, thus building isolation between applications.

3. Default Deny & Whitelisting Rules

   You can support configuring all traffic to be denied, then explicitly allow certain access.

4. GUI Management

   Compared to writing YAML manually, Deka Guard simplifies policy management through a friendly user interface.