privateIP egress rules, why? (original) (raw)

Hey y’all,

Is there a reason for singleuser.networkPolicy.egressAllowRules.privateIPs set to False by default. Just found my way down a debug rabbit hole as I was unable to call another pods API due to it being on a 10.0.0.0/8 LB ip.

manics April 24, 2025, 10:19am 2

There are a lot of use-cases for Z2JH. For example in educational environments you probably don’t want students to have access to internal infrastructure by default, whereas for real production data handling you probably would.

There’s no ideal configuration, so we’ve erred on the side of caution.