I have multiple calico networkPolicies in namespace:
-
deny-all
-
allow-example (allows pods with given label access to test.my-ns.svc.cluster.com)
In this namespace I create k8s pods with 2 containers: A and B.
Is it possible to create new networkPolicy (or more entities, I cannot find solution in documentation) that would allow container B to access some other namespace or address, but container B would not be able to access it. As far as I understand my networkPolicies only affect whole pods, not individual containers in them.