We have 2 systems of different security classifications :
an existing one is critical already in the container/mesosphere
and another incoming one is low security.
The mesosphere cluster itself is rather costly. Can't afford
to set up another cluster just for the new low-security system
& at same time, concerned about co-mingling the 2 in the
We are considering an isolation technique instead of moving the
low-security system to cloud:
the critical system to only run in certain private node while the
low-security (& more medium-low security systems to come)
be run in other private nodes. Is this isolation considered
secure or we'll need OS/container firewalls or any other mechanisms
to isolate the high-security system from the other systems?