-
Notifications
You must be signed in to change notification settings - Fork 4.6k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Given a pool of Elastic IPs, provision them to Ingress Controllers #71
Comments
I've solved temporarily this problem with a kubernetes deployment which should be assigned just to the node you wish to allocate the EIP: Change the eipalloc-YOURID to the eipalloc (obtain it from the AWS console)
|
@zapman449 did you check the whitelist example in the nginx ingress controller. It allows you to set the IP or network ranges per Ingress |
This looks like it's addressed with the ingress controller whitelisting, please re-open if needed |
I don't think this is addressed by ingress controller whitelisting. If I understand correctly, @zapman449 wants to associate nodes with EIPs, so customers can whitelist those IPs in their outgoing firewalls to allow a connection to the cluster. |
In AWS the more appropriate solution is to bring the nodes ASG into one or more target groups, and then front the target group with an NLB. With the above, I believe this issue is moot. |
Basic use case: Some customers require whitelisting IP Addresses in order to access a service. This precludes the ability to leverage ELBs or similar.
Suggested implementation: Admin provides a pre-existing list of EIP Allocations, The controller should then label the nodes which receive these EIPs and then associate the EIPs with those nodes.
Then the admins/developers can target jobs at those labels.
Ideally, several pools of EIPs should be possible, with a unique label per EIP Pool.
The text was updated successfully, but these errors were encountered: