Physical network access with micro-segmentation

This learning path demonstrates how to create a secondary network to provide Red Hat OpenShift Virtualization virtual machines (VMs) access to services running on the physical network. To increase the security within your cluster’s physical network, the secondary network will be subject to micro-segmentation, governing—using policy—exactly what services a workload can access or be accessed from.

Note that this software-defined networking (SDN) approach uses physical networking infrastructure, and as such, will require the provisioning of virtual local area networks (VLANs) and other physical network resources.

Prerequisites:

An OpenShift cluster, version >= 4.15.
OVN Kubernetes CNI configured as the default network provider.
Kubernetes-nmstate operator deployed.

In this learning path, you will:

Create a secondary network to provide Red Hat OpenShift with virtual machine access to services running on the physical network.

Report a website issue

Linux

Java runtimes & frameworks

Kubernetes

Integration & App Connectivity

Automation

Developer tools

Developer Sandbox

Programming Languages & Frameworks

System Design & Architecture

Developer Productivity

Secure Development & Architectures

Platform Engineering

Automated Data Processing

Start exploring in the Developer Sandbox for free

Interactive Lessons and Learning Paths

Developer Sandbox Activities

E-Books

Tutorials

Cheat Sheets

Documentation

Red Hat Learning

Tech Talks

Deep Dives

Red Hat Summit 2025