kubediff VS inspektor-gadget

When working against a cluster I would use stern like you do combined with two tools I’ve written kubesess for sessions and kubediff for comparing state

If you add all those as I did when starting with exactly what you wrote, you would end up with this script, and that worked for a while, this program is a better version of that.

You can try using https://www.inspektor-gadget.io/ You can try either, top tcp, trace network-graph or trace tcp gadget. It's a CNCF sandbox project and it's kubernetes native so I think this should work.

This works really well https://github.com/inspektor-gadget/inspektor-gadget/blob/main/docs/gadgets/advise/network-policy.md

Link to GitHub Repository

Inspector gadget is a tool designed to introspect and debug Kubernetes applications using eBPF.

I found this tool: https://github.com/kinvolk/inspektor-gadget great if you want to have a detailed debugging for running pods e.g all exec system calls or trace tcp connections etc.

All namespaces should have NetworkPolicy. Interactions between namespaces should be limited to NetworkPolicy following least privileges principles (Inspektor Gadget)

The team behind traceloop has integrated it with the Inspektor Gadget project, so you can run traceloop on the K8s platform using kubectl. See the demos in Inspektor Gadget - How to use and, if you like, try it on your own.