Enforce a NetworkPolicy to Block All Traffic Except DNS
by Omkar Shelke
A Pod must be fully isolated from the cluster network. Deny all incoming traffic and block all outgoing traffic except DNS queries on port 53.
Submissions: 10/11
Challenges
Focused hands-on problems designed to help you hone your DevOps or Server Side skills. Some challenges are more educational, while others are based on real-world scenarios. The platform provides hints and feedback for each challenge, including automated solution checks.
Community Collection
Challenges contributed by the community members sharing their knowledge and expertise.
Challenge, Medium, on
Grant Read-Only Access to a Developer Using RBAC Role and RoleBinding
by Omkar Shelke
A developer named siddhi requires read-only access to specific resources in the production namespace. Create a Role and RoleBinding to grant the minimum required permissions without any write access.
Challenge, Medium, on
Secure ServiceAccount Token Mounting Using Projected Volumes
by Omkar Shelke
Enforce Kubernetes security best practices by disabling automatic ServiceAccount token mounting and providing a short-lived projected token to the application Pod.
Submissions: 7/11
Challenge, Medium, on
Configure Selective Pod-to-Pod Communication Using NetworkPolicies Under Default-Deny
by Omkar Shelke
Learn how to control traffic between Pods using Kubernetes NetworkPolicy. Apply a default deny-all policy and then selectively allow only the traffic that is required between frontend and backend Pods.
Submissions: 8/10