将运行私有 su.net 的集群暴露给面向 inte.net 的负载均衡器
[英]expose cluster running private subnet to an internet facing load balancer
问题描述
I have a cluster v 1.15 running in AWS.
我有一个在 AWS 中运行的集群 v 1.15。 I have a service that I use from within the pod that I'm not in control of and that requires whitelisting via IP address so I wanted to get a static IP use NAT gateway IP. The cluster is currently running in a public su.net but I'm planning to move the node groups to a private su.net to use the NAT IP. The issue is I have an inte.net facing Elastic load balancer used by the front end pods in the eks accessed via HTTP and HTTPS that is already attached to the public su.net and I'm afraid that the front end will become unreachable if I move the nodes to a private su.net.我有一个我在 pod 中使用的服务,我无法控制它需要通过 IP 地址加入白名单,所以我想获得一个 static IP 使用 NAT 网关 IP。该集群当前在公共 su.net 中运行但我打算将节点组移动到私有 su.net 以使用 NAT IP。问题是我有一个面向 inte.net 的弹性负载均衡器,由通过 HTTP 和 HTTPS 访问的 eks 中的前端 pod 使用已经连接到公共 su.net,如果我将节点移动到私有 su.net,我担心前端将无法访问。 Any ideas?有任何想法吗?
1 个解决方案
解决方案1
0 2021-09-29 00:55:21
Noticed you have changed your question.注意到你已经改变了你的问题。 Anyway, you can whitelist using the EIP that associated with the NAT.无论如何,您可以使用与 NAT 关联的 EIP 列入白名单。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.