We would like see traffic from other interfaces on the host, but noticed that they are not visible in the kubernetes pods. Is there an option that can be configured in the yaml file to make the interface(s) visible in the pods which are running in privileged mode.
Asked
Active
Viewed 476 times
1 Answers
0
If you put hostNetwork: true your Pod will see the host interfaces.
Technically you only need CAP_NET_ADMIN and CAP_NET_RAW to use promiscuous mode. See https://kubernetes.io/docs/concepts/policy/container-capabilities/ for details.
Janos Lenart
- 25,074
- 5
- 73
- 75
-
Thanks for the response. The hostNetwork addresses our needs. – Ajit Sarnaik Apr 26 '17 at 23:00
-
I'm glad it was helpful :) – Janos Lenart Apr 27 '17 at 00:42
-
Note that the ability to place a CNI plugin into promiscuous mode is up for review here https://github.com/containernetworking/cni/pull/441. – cmluciano May 22 '17 at 19:27