Open m3adow opened 1 year ago
The used Match strings in the rule don't only apply to the Pod IP leakage error which is mentioned in the remediation recommendation, but also to other issues like a putEndpointIdTooManyRequests error which seems to be neglectable.
putEndpointIdTooManyRequests
An example message for this kind of error:
E0828 10:59:06.457564 2003 kuberuntime_manager.go:782] "CreatePodSandbox for pod failed" err="rpc error: code = Unknown desc = failed to setup network for sandbox \"685a6e6e5b2b4564b3fdb98598110bb62feffdfb50c4743f45a02d277122227d\": plugin type=\"cilium-cni\" failed (add): unable to create endpoint: [PUT /endpoint/{id}][429] putEndpointIdTooManyRequests " pod="test-namespace/test-pod"
The used Match strings in the rule don't only apply to the Pod IP leakage error which is mentioned in the remediation recommendation, but also to other issues like a
putEndpointIdTooManyRequestserror which seems to be neglectable.An example message for this kind of error: