A namespace has a default deny egress NetworkPolicy and applications suddenly cannot resolve DNS names. What is the most likely reason?

APods must use hostNetwork when egress is denied

BDefault deny egress also blocks DNS until a separate allow rule is added

CCoreDNS ignores NetworkPolicies by design

DDNS always requires a ClusterRoleBinding

More Kubernetes Security Fundamentals Questions

45 questions

Full Kubernetes and Cloud Native Security Associate Practice Test

All topics covered

All Kubernetes and Cloud Native Security Associate Questions

Browse by topic

Related Questions

Which Pod Security Standards level is aimed at ease of adoption while preventing known privilege esc...

easy

A namespace is labeled pod-security.kubernetes.io/enforce=restricted. What happens when a new Pod vi...

easy

A developer needs to store confidential API credentials for a workload. Which Kubernetes object is d...

easy

A platform team wants to reuse the same permission set in multiple namespaces but grant it only insi...

medium

Why is granting list access to Secret objects considered sensitive?...

medium

View all Kubernetes Security Fundamentals questions

Educational Content — CertQnA practice questions are written against official exam objectives, covering the same domains tested on the real exam. All content is original and independent — not actual exam questions, not affiliated with any certification vendor. Learn more about our content policy

Discussion

Be the first to share your understanding of this concept

⚠️ Discussion is for concept clarification only. Do not share or request actual exam questions or answers.