In the dynamic world of Amazon EKS, where workloads frequently interact with other AWS and third-party services, traditional network firewalls fall short due to their reliance on network addresses at node or cluster level. This challenge is amplified by the distributed, ephemeral nature of EKS workloads. Calico steps in to fill this gap, offering egress-based access controls for Amazon EKS workloads and facilitate secure and controlled data flow between Kubernetes pods and external resources. In our upcoming webinar, we will explore:

• Deploy zero-trust workload access controls with namespace isolation recommendations
• DNS policies to limit access to external resources
• Network sets to limit access to external resources by IP ranges
• Block lateral movement of APTs with identity-aware microsegmentation