Cluster NetworkPolicy statistics
Problem to solve
Users will be using
NetworkPolicy objects in their cluster to restrict access and ensure resources aren't being abused, but it is difficult to view the status of what is happening, what has happened, and if any abusive activity was blocked.
Today, users will only be able to see the logs of their cluster and what has been blocked if they use a terminal to connect directly to the cluster and look at Pod logs. While this is doable, it is difficult, time-consuming, and could be an overload of information. It also means users will have to leave GitLab to find this information.
Display to users information about what the
NetworkPolicy object for their cluster has blocked. Be able to show this over various time periods and allow specific occurrences to be inspected.
- Create a screen on the
Security & Compliancemenu to display the logs of
- Proposal to largely mirror the interfaces used for the WAF
- Display overarching statistics, such as number and percentage of traffic that has been blocked
- Display a listing of each individual piece of traffic that was blocked.
- Create a
Findingobject every time a piece of traffic is blocked due to a
Permissions and Security
Permissions should match those required by the Security Dashboard