Kubernetes Engine support for a cluster-level default backend NSG for load balancers and network load balancers

You can now optionally specify one or more default backend network security groups (NSGs) as a cluster property when creating or updating a cluster with Kubernetes Engine.

When you specify "NSG" as the value of the oci.oraclecloud.com/security-rule-management-mode annotation for a service of type LoadBalancer, the cluster's default backend NSG is used for the load balancers and network load balancers that Kubernetes Engine provisions. You can override the default backend NSG at the individual service level.

For more information, see Using the oci.oraclecloud.com/security-rule-management-mode annotation to manage security rules in NSGs and security lists.