1 of 1

Network Policy

Network policy configuration file explanation and example.

The Network Policy Plugin allows users to define and enforce traffic policies based on CIDRs (IP ranges) and domain resolutions. It supports advanced configurations for alerting, enforcing, and bypassing traffic rules, ensuring flexible network control.

Jibril execution:

Enable the Network Policy Plugin:

Enable the alert events:

in case alert or both modes are enabled.

Configuration Example

Configuration Overview

Modes and Policies

CIDR Modes

CIDR Policy

Resolve Modes

Resolve Policy

Rule Details

CIDR Rules

Domain Rules

Domain

Policy

Description

org

allow

Allow resolution of all .org domains.

google.com

allow

Allow resolution of google.com.

example.com

deny

Block resolution of example.com.

uol.com.br

deny

Block resolution of uol.com.br.

Key Features

Alert and Enforce Modes Flexibly alert or block traffic and domain resolutions based on custom rules.
Granular Rule Definition Define specific CIDRs or domains to allow or deny traffic.
Default Policy Configuration Set default allow or deny policies for both CIDRs and domains.
Independent Rules Domain resolution rules operate independently of CIDR traffic rules for fine-grained control.
Testing Support Easily configure test rules, such as whitelisting all traffic, for development and debugging purposes.

Ensure that CIDR and domain rules are carefully managed to avoid unintended access or blocking.