---
title: VPC-native clusters should be used
description: Datadog, the leading service for cloud-scale monitoring.
breadcrumbs: Docs > Datadog Security > OOTB Rules > VPC-native clusters should be used
---

# VPC-native clusters should be used
 
## Description{% #description %}

Alias IPs should be enabled for the node network CIDR range in order to subsequently configure IP-based policies and firewalling for pods.

## Remediation{% #remediation %}

**Note**: You cannot enable IP Aliases on an existing cluster.

Follow the how-to from the [Create a Native-VPC cluster](https://cloud.google.com/kubernetes-engine/docs/how-to/alias-ips) guide to create a cluster with **IP Aliases** enabled.

## References{% #references %}