Securing Apps with Network Policy and Weave Net
In this scenario, you have the task of securing the companies' shop, Sock Shop. You will create firewalls and define Kubernetes network policies on the containers that can communicate with each other and use Weave Net to enforce these policies.
Weave Cloud enables you to quickly get up to speed and complete the requirements quickly. Weave Cloud provides a container platform agnostic solution allowing you to deploy, secure and visualize your Microservice deployments.
Weave Net enables secure cross-cloud communication between containers. This includes the ability to add firewalls between containers to restrict network communications.
In this scenario, you used Weave Cloud to test the security on an application.
With Weave Cloud you view and monitor your microservices from one convenient troubleshooting dashboard, and together with automated continuous delivery built with your favorite tools, Weave Cloud allows you to create higher quality code more rapidly.
Weave Scope allows developers to explore application deployments and the dependencies.
Weave Flux manages the automation of deployments, and automatically rolls out new versions if the Docker Image changes.
Prometheus and Weave Cortex automatically aggregates and pushes application metrics to Weave Cloud.
Weave Net enforces secure cross-cloud communication between containers using Kubernetes Network Policy.
Try it on your own infrastructure by following the Weave Cloud guides series.
Container Networks & Firewalls
Step 1 - Sign Up To Weave Cloud
You test that the security is working properly Weave Net from within Weave Cloud. But first, you'll need to sign up for an account.
1. To begin, sign up for Weave Cloud .
2. Select 'Create New Instance...' from the drop down in the header and call it Katacoda.
3. Weave Cloud assigns each new instance a Service Token, which is found on the settings panel.
Enter the Service Token in the terminal window to configure your environment. It will be used later in this tutorial when the Weave Scope probes are launched onto your hosts.
The Service Token can always be accessed by clicking on the Settings icon from the header in Weave Cloud.