Can I modify and use /etc/host.allow
file or something similar to restrict the outgoing (egress) calls from my kubernetes pods. If there is intermediate lookup happening while making an egress call from pod to external domain(lets say google.com), then I should be able to use hosts.allow
kind of config to control and restrict the access of outgoing calls?
For example I want to allow google.com
and block gitHub.com
.
Note: I see in my default pods that coredns pod is already present with image: rancher/coredns-coredns:1.8.3.
I understand that it comes default with k3s.
PS: I have already explored calico and other external (third party) network policy but they are not fulfilling my requirement.