To define an egress group, perform the following procedure.

Procedure

  1. On the left navigation pane, do one of the following depending on your system configuration and role:
    • If you have the Kubernetes Security DevOps or SecOps role and your system has only theContainers security feature, click Inventory > Network.
    • If you have any other role and your system has Container security and other Carbon Black Cloud features, click Inventory > Kubernetes > Network.
  2. Click the Egress Groups tab and then click Add Group.
  3. Enter the Name and Description for the group.
  4. Define the Destination subnet and domains for the group. Configure the destination as a set of rules with logical AND operator. The possible options to configure are the following.
    1. DNS domain name — exact match of the domain name
    2. DNS domain name and subdomains — all domain names containing the subdomain suffix
    3. IP range — classless inter-domain routing (CIDR) using subnet masks or IPv6 notation

    Example:

    Sample Add Egress Group form
  5. Click Save.