[英]Private connection between GKE and Compute Engine on Google Cloud
I've tried creating firewall rules of three different types that do not work:我尝试创建三种不起作用的防火墙规则:
10.0.0.0/8
, 172.16.0.0/12
, and 192.168.0.0/16
for source.通过 IP 地址,我使用网络标签作为目标和私有 IANA IP 范围10.0.0.0/8
、 172.16.0.0/12
和192.168.0.0/16
作为源。 The only thing that works is the last option but using 0.0.0.0/0
for source IP range.唯一有效的是最后一个选项,但使用0.0.0.0/0
作为源 IP 范围。
I've looked at a few related questions such as:我查看了一些相关的问题,例如:
But I'm not looking to make my GKE cluster private and I have tried to create the firewall rules using network tags to no avail.但我不希望将我的 GKE 集群设为私有,我尝试使用网络标签创建防火墙规则但无济于事。
What am I missing or is this not possible?我错过了什么或者这是不可能的?
Not sure how I missed this, fairly certain I tried something similar a couple months back but must have had something else misconfigured.不知道我是怎么错过的,相当肯定我在几个月前尝试过类似的东西,但肯定有其他错误配置。
On the GKE cluster Details page, there is a pod address range.在 GKE 集群详情页面,有一个 pod 地址范围。 Setting the firewall source range to GKE pod address range gave me the the desired outcome.将防火墙源范围设置为 GKE pod 地址范围给了我想要的结果。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.