Search icon CANCEL
Subscription
0
Cart icon
Your Cart (0 item)
Close icon
You have no products in your basket yet
Arrow left icon
Explore Products
Best Sellers
New Releases
Books
Videos
Audiobooks
Learning Hub
Conferences
Free Learning
Arrow right icon
Arrow up icon
GO TO TOP
Hands-on Kubernetes on Azure, Third Edition

You're reading from   Hands-on Kubernetes on Azure, Third Edition Use Azure Kubernetes Service to automate management, scaling, and deployment of containerized applications

Arrow left icon
Product type Paperback
Published in May 2021
Publisher Packt
ISBN-13 9781801079945
Length 528 pages
Edition 3rd Edition
Languages
Tools
Arrow right icon
Authors (3):
Arrow left icon
Gunther Lenz Gunther Lenz
Author Profile Icon Gunther Lenz
Gunther Lenz
Nills Franssens Nills Franssens
Author Profile Icon Nills Franssens
Nills Franssens
Shivakumar Gopalakrishnan Shivakumar Gopalakrishnan
Author Profile Icon Shivakumar Gopalakrishnan
Shivakumar Gopalakrishnan
Arrow right icon
View More author details
Toc

Table of Contents (22) Chapters Close

Preface Foreword
Section 1: The Basics FREE CHAPTER
1. Introduction to containers and Kubernetes 2. Getting started with Azure Kubernetes Service Section 2: Deploying on AKS
3. Application deployment on AKS 4. Building scalable applications 5. Handling common failures in AKS 6. Securing your application with HTTPS 7. Monitoring the AKS cluster and the application Section 3: Securing your AKS cluster and workloads
8. Role-based access control in AKS 9. Azure Active Directory pod‑managed identities in AKS 10. Storing secrets in AKS 11. Network security in AKS Section 4: Integrating with Azure managed services
12. Connecting an application to an Azure database 13. Azure Security Center for Kubernetes 14. Serverless functions 15. Continuous integration and continuous deployment for AKS Index

11. Network security in AKS

Securing a network is a critical activity in the protection of an application. The goal of a secure network is, on the one hand, to allow your users to connect to your applications and use all the functionalities you offer. On the other hand, you also need to protect your network from attackers. This means making sure that they cannot get access to critical parts of your network, and that even if they were to gain access, this would be limited.

When it comes to network security in AKS, there are two different layers to secure the network. The first is the control plane. The control plane refers to the managed Kubernetes master servers that host the Kubernetes API. By default, the control plane is exposed to the internet. You can secure the control plane either by limiting which public IP addresses can access it using a feature called Authorized IP ranges, or by deploying a private cluster, which means only the machines connected to your virtual...

lock icon The rest of the chapter is locked
Register for a free Packt account to unlock a world of extra content!
A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.
Unlock this book and the full library FREE for 7 days
Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of
Renews at $19.99/month. Cancel anytime
Banner background image