stackoom
  简体   繁体   中英

How to IP whitelist a Kubernetes cluster

 原文  2020-02-22 22:46:20       kubernetes/ google-kubernetes-engine/ nat

Question

So I have a kubernetes cluster running in Google Cloud. And from pods inside the cluster I need to access an external DB which has IP whitelisting configured. It seems that I need a static, shared IP for the cluster's outgoing traffic, what's the best approach?

Setting up a service IP seems irrelevant as that's for inbound traffic. I looked into Cloud NAT and it seems promising, but I'm not exactly sure about how to set that up. Any docs/tutorial would be helpful, thanks!

1 answers

solution1
 2 ACCPTED  2020-02-23 03:33:32

According the docs when traffic goes out of a kubernetes cluster in GKE it will get SNATed with the IP of the node. So you could whitelist the IPs of all GKE kubernetes cluster nodes.

Here is some best practices on connecting to external services from Kubernetes cluster. An example for connecting to Cloud SQL from Google Kubernetes Engine.

An example setup of Cloud NAT on GKE.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question How to whitelist entire kubernetes cluster on external server How to assign an IP to Kubernetes cluster? Kubernetes Ingress Whitelist IP for host Kubernetes Ingress Whitelist IP for path How to get the cluster IP of a kubernetes service How to access services through kubernetes cluster ip? how is cluster IP in kubernetes-aws configured? Get kubernetes cluster ip What is the cluster IP in Kubernetes? Kubernetes Basic - Cluster IP
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM