Liqo v0.10: One Small Step for Liqo, One Important Step for Inter-Cluster Security

Photo by Nicolas Thomas on Unsplash

Exciting news for all Liqo enthusiasts! We are delighted to announce the release v0.10 of our project, enriched with new features.

This time, the work of our brilliant team has marked a step forward in inter-cluster security, introducing:

• Inter-cluster traffic segregation. This feature provides an optional mode that prevents remote workloads from accessing local not-offloaded services. Additionally, the local cluster will only be able to contact its offloaded pods and not other pods running remotely. More information can be found here.
• AllowList-based and DenyList-based Resource Reflection. It makes it possible to configure a per-resource allow-based or deny-based reflection mechanism: the former do not reflect any resource in the liqo-enabled namespaces, except the ones with the liqo.io/allow-reflection annotation, and the latter reflects all the resources available in the liqo-enabled namespaces, excluding the ones with the liqo.io/skip-reflection annotation.

Thanks to all the contributors for their hard work and the users for their feedback and support. If you like the project, please do not forget to star it on GitHub and join our Slack community.