You can now run pre-defined network path analysis tests to troubleshoot network configuration issues with clusters you've created using Container Engine for Kubernetes. These path analysis tests examine virtual network topologies, walk through multiple route tables, and scrutinize security rules in network security groups (NSGs) and security lists. No actual traffic is sent, instead the configuration is examined and used to confirm reachability.

For example, you can use a path analysis test to determine whether a pod in a Kubernetes cluster that uses the VCN-Native Pod Networking CNI plugin can reach OCI services, and vice versa.

When you run a test, default values for some or all of the test parameters are derived from the properties of resources used by the cluster. Having run a pre-defined path analysis test, you can save the results as a JSON file, enabling you to compare test results over time.

The path analysis tests are powered by Oracle Cloud Infrastructure Network Path Analyzer (NPA), which identifies virtual network configuration issues that impact connectivity. In addition to the pre-defined path analysis tests, you can also create your own custom path analysis tests using NPA.

For more information, see Troubleshooting Network Configuration Issues for Kubernetes Clusters Using Network Path Analysis Tests.