Workspace Network Isolation
You have already enabled Network Policies.
Use an account of the
workspace-adminrole. For example, use the account
ws-admincreated in Create Workspaces, Projects, Accounts and Roles.
NoteFor the implementation of the network policy, you can refer to KubeSphere NetworkPolicy.
Enable or Disable Workspace Network Isolation
Workspace network isolation is disabled by default. You can turn on network isolation in Basic Information under Workspace Settings.
You can also disable network isolation on the Basic Information page.
To ensure that all Pods in a workspace are secure, a best practice is to enable workspace network isolation.
When network isolation is on, the workspace cannot be accessed by other workspaces. If a workspace’s default network isolation doesn’t meet your needs, turn on project network isolation and customize your project’s network policy.
Was this page Helpful?
Thanks for the feedback. If you have a specific question about how to use KubeSphere, ask it on Slack. Open an issue in the GitHub repo if you want to report a problem or suggest an improvement.