[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: Clarification



On 09/08/2016 03:32 PM, Srinivas Naga Kotaru (skotaru) wrote:
> Containers that use UDP (Layer 4) and do not go through the Openshift
> networking layer can find other containers running in a Pod with a
> Service defined. *Potential impact* to mutli-tenant boundaries.

Can you explain what you mean? Especially the part about "and do not go
through the OpenShift networking layer"?

If by "can find other containers" you just mean "can find that certain
IP addresses are in use by pods in other namespaces", then yes, that's
true, but they can't actually communicate with them.

-- Dan


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]