Secure Kubernetes Services in an EKS Cluster

Learn how VM-Series firewalls combine with Panorama to manage EKS deployments.
The AWS plugin enables you to secure North-South traffic destined to container services and workloads in Amazon Elastic Kubernetes Service (EKS) environments in which you have deployed VM-Series firewalls. You can also monitor outbound traffic from an EKS cluster.
After you configure the plugin on Panorama to communicate with an EKS cluster, the plugin uses the Kubernetes APIs to retrieve information from each service that has an exposed IP address or fully-qualified domain name (FQDN). With this information the plugin creates NAT rules in Panorama to enforce Security policy and ensure inbound service traffic passes through the VM-Series firewalls. To secure inbound traffic to the cluster, push your configuration to managed VM-Series firewalls.

Recommended For You