Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[aws-eks] CIDR whitelist ranges for public API endpoints #5839

Closed
2 tasks
rwkarg opened this issue Jan 16, 2020 · 1 comment
Closed
2 tasks

[aws-eks] CIDR whitelist ranges for public API endpoints #5839

rwkarg opened this issue Jan 16, 2020 · 1 comment
Assignees
Labels
@aws-cdk/aws-eks Related to Amazon Elastic Kubernetes Service effort/small Small work item – less than a day of effort feature-request A feature should be added or improved. p1

Comments

@rwkarg
Copy link

rwkarg commented Jan 16, 2020

Allow specification of CIDR ranges to whitelist access to public cluster API endpoints.

This is similar to #5220 to configure availability of public/private API endpoints, but allows further specification of the public endpoint to only allow specific CIDR ranges to access the public API

Use Case

Our current direct connect infrastructure does not allow private endpoints to be accessed from our internal (non-AWS) networks and we will not allow public API endpoints without specific whitelisting in place.

Proposed Solution

Allow specification of the publicAccessCidrs used to configure the public API endpoint.
https://docs.aws.amazon.com/eks/latest/userguide/cluster-endpoint.html

Other

  • 👋 I may be able to implement this feature request
  • ⚠️ This feature might incur a breaking change

This is a 🚀 Feature Request

@rwkarg rwkarg added feature-request A feature should be added or improved. needs-triage This issue or PR still needs to be triaged. labels Jan 16, 2020
@SomayaB SomayaB added the @aws-cdk/aws-eks Related to Amazon Elastic Kubernetes Service label Jan 16, 2020
@eladb eladb added the effort/small Small work item – less than a day of effort label Jan 22, 2020
@SomayaB SomayaB removed the needs-triage This issue or PR still needs to be triaged. label Mar 5, 2020
@eladb eladb added the p1 label Mar 9, 2020
@eladb eladb changed the title [EKS] Support providing CIDR whitelist ranges for public API endpoints eks: CIDR whitelist ranges for public API endpoints Mar 9, 2020
@eladb
Copy link
Contributor

eladb commented Mar 9, 2020

Duplicate #5220

@eladb eladb closed this as completed Mar 9, 2020
@iliapolo iliapolo changed the title eks: CIDR whitelist ranges for public API endpoints [aws-eks] CIDR whitelist ranges for public API endpoints Aug 16, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
@aws-cdk/aws-eks Related to Amazon Elastic Kubernetes Service effort/small Small work item – less than a day of effort feature-request A feature should be added or improved. p1
Projects
None yet
Development

No branches or pull requests

4 participants