Skip to main content
IN PREVIEW

Public preview: Pod sandboxing in AKS

Published date: March 01, 2023

Azure Kubernetes Service (AKS) now allows you, in public preview, to run pod sandboxed containers.   

Pod Sandboxing provide an effective strategy for safeguarding against “Container Breakout” scenarios such as a malicious or legitimate user escaping container isolation to access filesystem, processes, network interfaces, and other resources on the host machine. 

While one can enforce isolation through node pools, such an approach poses significant operation and resource overhead and increases operational costs.  Pod Sandboxing addresses this issue by isolation workloads at the kernel level. 

To learn more, visit: https://aka.ms/aks/podsandbox

  • Azure Kubernetes Service (AKS)
  • Features