{"id":"multi-network-policy-enforcement-complete","text":"Network policy enforcement covers both primary networks (via AdminNetworkPolicy cluster-scoped rules with Allow/Deny/Pass actions) and secondary networks (via MultiNetworkPolicy with identical spec to NetworkPolicy), providing comprehensive traffic control across all network interfaces.","truth_value":"OUT","source":"","source_url":"","source_hash":"","justifications":[{"type":"SL","antecedents":["multi-cni-network-architecture","anp-three-actions-allow-deny-pass","multinetworkpolicy-spec-identical-to-networkpolicy"],"outlist":["sriov-multi-network-policy-tech-preview"],"label":"depth-2 gated — policy enforcement is architecturally complete but SR-IOV secondary network policies remain tech preview, leaving a gap for hardware-accelerated workloads"}],"dependents":[],"metadata":{},"explanation":{"steps":[{"node":"multi-network-policy-enforcement-complete","truth_value":"OUT","reason":"SL justification invalid","failed_antecedents":[],"label":"depth-2 gated — policy enforcement is architecturally complete but SR-IOV secondary network policies remain tech preview, leaving a gap for hardware-accelerated workloads","violated_outlist":["sriov-multi-network-policy-tech-preview"]}]}}