Subscription

Explore Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Learning Hub

Conferences

Free Learning

You're reading from Learn OpenShift Deploy, build, manage, and migrate applications with OpenShift Origin 3.9

Product type Paperback

Published in Jul 2018

Publisher Packt

ISBN-13 9781788992329

Length 504 pages

Edition 1st Edition

Languages

Tools

Openshift

Concepts

Containerization

Authors (3):

Denis Zuev

Aleksey Usov

Artemii Kropachev

View More author details

Table of Contents (24) Chapters

Preface

1. Containers and Docker Overview FREE CHAPTER

2. Kubernetes Overview

3. CRI-O Overview

4. OpenShift Overview

5. Building an OpenShift Lab

6. OpenShift Installation

7. Managing Persistent Storage

8. Core OpenShift Concepts

9. Advanced OpenShift Concepts

10. Security in OpenShift

11. Managing OpenShift Networking

12. Deploying Simple Applications in OpenShift

13. Deploying Multi-Tier Applications Using Templates

14. Building Application Images from Dockerfile

15. Building PHP Applications from Source Code

16. Building a Multi-Tier Application from Source Code

17. CI/CD Pipelines in OpenShift

18. OpenShift HA Architecture Overview

19. OpenShift HA Design for Single and Multiple DCs

20. Network Design for OpenShift HA

21. What is New in OpenShift 3.9?

22. Assessments

23. Other Books You May Enjoy

Leave a review - let other readers know what you think

Egress network policies

While the idea behind network policies is to control access between pods across projects, egress network policies allow you to restrict access from all pods in a project to certain external resources. A typical use case for this feature would be denying pods access to source code from hosting providers and content mirrors to prevent any updates of applications and/or system libraries in those pods. It's important to understand that, unlike egress routers, egress network policies don't perform any redirection of traffic, working on just an Allow versus Deny basis instead.

Let's see what level of access pods our demo-1 project has:

# oc project demo-1
...
# oc rsh httpd ping github.com
PING github.com (192.30.255.113) 56(84) bytes of data.
64 bytes from lb-192-30-255-113-sea.github.com (192.30.255.113): icmp_seq=1 ttl=61 time=61.8 ms
...
<output...

The rest of the chapter is locked

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at €18.99/month. Cancel anytime

Authors (3)

Aleksey Usov

Aleksey Usov has been working in the IT industry for more than 8 years, including in the position of infrastructure architect on projects of a national scale. He is also an expert in Linux with experience encompassing various cloud and automation technologies, including OpenShift, Kubernetes, OpenStack, and Puppet. At the time of writing, he holds the highest Red Hat certification level in CIS and Russia – RHCA Level XIV.

See other products by Aleksey Usov

Artemii Kropachev

Artemii Kropachev is a worldwide IT expert and international consultant with more than 15 years' experience. He has trained, guided, and consulted hundreds of architects, engineers, developers, and IT experts around the world since 2001. His architect-level experience covers solution development, data centers, clouds, DevOps, middleware, and SDN/NFV solutions built on top of any Red Hat or open source technologies. He also possesses one of the highest Red Hat certification levels in the world – RHCA Level XIX.

See other products by Artemii Kropachev

Denis Zuev

Denis Zuev is a worldwide IT expert with 10+ years' experience. Some people in the industry think that he is not human, and not without reason. His areas of expertise are networks, servers, storage, the cloud, containers, DevOps, SDN/NFV, automation, programming, and web development; you name it, he can do it. He is also known for his certification achievements. At the moment, he holds the following expert-level industry certifications: RHCI, RHCA.VI, 6xCCIE, 4xJNCIE, CCDE, HCIE, and VCIX-NV. He is a contractor and an instructor who works with top companies, including Cisco, Juniper, Red Hat, and ATT.

See other products by Denis Zuev