Kaspersky Container Security allows checking the reputation of network resources and categorizing them to improve the security of the runtime, visualize traffic between resources, and control access to dangerous IP addresses, DNS servers, and domain names. To use the solution for these purposes, you can:
To work with network reputations of resources, you need a current license with the Container network reputation licensing object.
The solution checks network hosts for compliance with configured runtime policies. For this purpose, the Kaspersky Container Security checks whether the statuses of network resources match the applicable reputation lists, and then compares these with the active runtime policies. If the agent finds a match for the status of an IP address or domain name in the reputation list (user-defined or local), network interaction with this network resource is allowed. If no such match is found, an action is performed in accordance with the selected response mode of the policy.
For the agent to work with network reputations of resources, network reputation monitoring actions must be enabled in the settings of the agent group.