Skip to content

Commit

Permalink
docs: egressgw: add section for excludedCIDRs
Browse files Browse the repository at this point in the history 
Signed-off-by: Gilberto Bertin <jibi@cilium.io>
  • Loading branch information
@jibi @pchaigno
jibi authored and pchaigno committed Feb 20, 2023
1 parent d6f8a46 commit aaeb260
Showing 1 changed file with 14 additions and 0 deletions.
14 changes: 14 additions & 0 deletions Documentation/network/egress-gateway.rst
View file
Original file line number Diff line number Diff line change
Expand Up @@ -209,6 +209,20 @@ One or more IPv4 destination CIDRs can be specified with ``destinationCIDRs``:
pods, nodes, Kubernetes API server) will be excluded from the egress gateway
SNAT logic.

It's possible to specify exceptions to the ``destinationCIDRs`` list with
``excludedCIDRs``:

.. code-block:: yaml
destinationCIDRs:
- "a.b.0.0/16"
excludedCIDRs:
- "a.b.c.0/24"
In this case traffic destined to the ``a.b.0.0/16`` CIDR, except for the
``a.b.c.0/24`` destination, will go through egress gateway and leave the cluster
with the designated egress IP.

Selecting and configuring the gateway node
------------------------------------------

Expand Down

0 comments on commit aaeb260

Please sign in to comment.