Skip to content

Update allowed PrivateLink CIDR in inbound rules to 10.0.0.0/8 #6849

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 7 commits into from
Jul 24, 2024
Merged

Update allowed PrivateLink CIDR in inbound rules to 10.0.0.0/8 #6849

merged 7 commits into from
Jul 24, 2024

Conversation

prasadkatti
Copy link
Contributor

@prasadkatti prasadkatti commented Jul 23, 2024
edited
Loading

For context, please refer to the conversation in internal Slack - https://twilio.slack.com/archives/C06HE252MK2/p1721744192599429?thread_ts=1719934516.398509&cid=C06HE252MK2

Proposed changes

According to the PrivateLink docs -

You can control whether PrivateLink traffic is subject to inbound rules. If you enable inbound rules on PrivateLink traffic, the source of the traffic is the private IP address of the client, not the endpoint interface.

The 10.248.64.0/18 CIDR belongs to the VPC in the PrivateLink/Edge account. The VPC endpoints use this CIDR. But the clients are not going to be in the edge account VPC. Instead they are going to be in the peered VPCs. So we are proposing allowing a wider CIDR range.

Merge timing

  • ASAP once approved

Related issues (optional)

@prasadkatti prasadkatti requested a review from a team as a code owner July 23, 2024 19:58
@prasadkatti prasadkatti requested a review from pwseg July 23, 2024 19:58
@prasadkatti prasadkatti changed the title Update PrivateLink CIDR to 10.0.0.0/8 Update allowed PrivateLink CIDR in inbound rules to 10.0.0.0/8 Jul 23, 2024
AMeng
AMeng previously approved these changes Jul 23, 2024
View reviewed changes
AnnieZhao17
AnnieZhao17 reviewed Jul 23, 2024
View reviewed changes
msarfaty
msarfaty reviewed Jul 24, 2024
View reviewed changes
prasadkatti and others added 2 commits July 23, 2024 17:09
@prasadkatti @msarfaty
update wording to address review comments
00fe640 
Co-authored-by: Mike Sarfaty <113384964+msarfaty@users.noreply.github.com>
@prasadkatti
endpoint is not capitalized in AWS docs
73775ec
msarfaty
msarfaty previously approved these changes Jul 24, 2024
View reviewed changes
AnnieZhao17
AnnieZhao17 previously approved these changes Jul 24, 2024
View reviewed changes
@pwseg pwseg requested review from forstisabella and removed request for pwseg July 24, 2024 17:01
forstisabella
forstisabella previously approved these changes Jul 24, 2024
View reviewed changes
Copy link
Contributor

@forstisabella forstisabella left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

just a few minor edits and we'll be ready to rock! 🚀

@prasadkatti @forstisabella
address review comments
4e8a16f 
Co-authored-by: forstisabella <92472883+forstisabella@users.noreply.github.com>
@prasadkatti prasadkatti dismissed stale reviews from AnnieZhao17 and msarfaty via 4e8a16f July 24, 2024 17:34
@prasadkatti @forstisabella
Update language to address review comments
3560d59 
Co-authored-by: forstisabella <92472883+forstisabella@users.noreply.github.com>
@prasadkatti prasadkatti merged commit 3771f59 into develop Jul 24, 2024
4 checks passed
@prasadkatti prasadkatti deleted the prasadkatti-patch-1 branch July 24, 2024 17:42
@github-actions GitHub Actions
Copy link
Contributor

Thank you for your contribution! Your pull request is merged, but may take a day or two to appear on the site.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@forstisabella forstisabella forstisabella approved these changes

@AMeng AMeng AMeng left review comments

@AnnieZhao17 AnnieZhao17 AnnieZhao17 left review comments

@msarfaty msarfaty msarfaty left review comments

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@prasadkatti @AMeng @AnnieZhao17 @forstisabella @msarfaty