mirror of
https://github.com/openshift/openshift-docs.git
synced 2026-02-05 12:46:18 +01:00
Include diagram for IPsec traffic flows
- https://issues.redhat.com/browse/OSDOCS-1491
This commit is contained in:
Jason Boxman
BIN
images/nw-ipsec-encryption.png
Normal file
BIN
images/nw-ipsec-encryption.png
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 62 KiB |
@@ -1,15 +1,21 @@
|
||||
// Module included in the following assemblies:
|
||||
//
|
||||
// * networking/ovn_kubernetes_network_provider/about-ipsec-ovn.adoc
|
||||
|
||||
[id="nw-ovn-ipsec-traffic_{context}"]
|
||||
= Types of network traffic flows encrypted by IPsec
|
||||
|
||||
With IPsec enabled, only the following network traffic flows between pods are encrypted:
|
||||
|
||||
* Traffic between pods on the cluster network
|
||||
* Traffic between pods on different nodes on the cluster network
|
||||
* Traffic from a pod on the host network to a pod on the cluster network
|
||||
|
||||
The following traffic flows are not encrypted:
|
||||
|
||||
* Traffic between pods on the same node on the cluster network
|
||||
* Traffic between pods on the host network
|
||||
* Traffic from a pod on the cluster network to a pod on the host network
|
||||
|
||||
The encrypted and unencrypted flows are illustrated in the following diagram:
|
||||
|
||||
image::nw-ipsec-encryption.png[IPsec encrypted and unencrypted traffic flows]
|
||||
|
||||
Reference in New Issue
Block a user