action #176850: [Containers] Add test for network isolation - Containers and images - openSUSE Project Management Tool

Actions

action #176850

closed

[Containers] Add test for network isolation

Added by ph03nix 3 months ago. Updated about 1 month ago.

Status:

Resolved

Priority:

Normal

Assignee:

Target version:

-

Start date:

2025-02-10

Due date:

% Done:

0%

Estimated time:

Tags:

containers, beginner-friendly

Description

We should add a test that checks if the network isolation works as expected [1].

We need to perform the following steps

Create a new (bridge) network with the --internal function
Ensure containers in this network can access the host
Ensure containers in this network cannot access the internet
Ensure containers in this network cannot modify the IP routes (e.g. ip route add default HOSTIP)

Acceptance criteria¶

AC1: A test runs that ensure the --internal function of a podman network works as defined above

Weblinks¶

[1] https://docs.podman.io/en/latest/markdown/podman-network-create.1.html#internal

Actions

Also available in: Atom PDF