Define how pods communicate using network policies.

Using VMware Tanzu Mission Control, you can create a network policy that defines how pods communicate with each other and other network endpoints, using preconfigured templates called recipes. By default, Tanzu Mission Control does not impose any such restriction, and allows you to manage network restrictions at the organizational level and at the workspace level.

Tanzu Mission Control implements network policies using Kubernetes native network policies. Each namespace and workspace can be governed by a network policy, and these policies are inherited down through the organizational hierarchy. Network policies are additive, both inherited and direct network policies are applied and are effective on your namespaces according to Kubernetes rules.

For more information about Kubernetes native network policies, see Network Policies in the Kuberenetes documentation. For more information about policy inheritance in Tanzu Mission Control, see Policy-Driven Cluster Management in VMware Tanzu Mission Control Concepts.