2 docs tagged with "cilium"

Reusable Kustomize component that drops a baseline `NetworkPolicy` into every app's namespace — default-deny ingress + egress, with explicit allow-rules for what the app actually needs to talk to.

eBPF-based CNI providing pod networking, kube-proxy replacement, network policy, WireGuard node-to-node encryption, L2 announcements for LoadBalancer IPs, and Hubble flow visibility.