Collected molecules will appear here. Add from search or explore.
NetworkPacket -> AllowedNetworkPacket
Filter network packets by mapping IP addresses to numeric security identities and validating them against a BPF policy map.
Problem it solves
IP-based firewall rules do not scale and are too dynamic in highly ephemeral container environments.
Consumes
Emits
The real projects this mechanism was found in. Attribution is the point — this is how the best teams actually do it.