is the network tools init container actually doing anything?

I see that the init container that runs the iptables command completes successfully using the k8s-network-tools image, but i’m not clear on what exactly that is supposed to be doing. The singleuser-sample image doesn’t have iptables installed on it…so how is the iptable rule supposed to work?

The init container runs the iptables command in the same pod as the singleuser sample. iptables is just a command that changes your system/pod setting, it doesn’t need to run continuously.

You can read more on A Deep Dive into Iptables and Netfilter Architecture | DigitalOcean

1 Like

Once the singleuser sample container is running, how can i verify the firewall rules without the iptables command?