[aws-eks] CIDR whitelist ranges for public API endpoints #5839
Labels
@aws-cdk/aws-eks
Related to Amazon Elastic Kubernetes Service
effort/small
Small work item – less than a day of effort
feature-request
A feature should be added or improved.
p1
Allow specification of CIDR ranges to whitelist access to public cluster API endpoints.
This is similar to #5220 to configure availability of public/private API endpoints, but allows further specification of the public endpoint to only allow specific CIDR ranges to access the public API
Use Case
Our current direct connect infrastructure does not allow private endpoints to be accessed from our internal (non-AWS) networks and we will not allow public API endpoints without specific whitelisting in place.
Proposed Solution
Allow specification of the
publicAccessCidrs
used to configure the public API endpoint.https://docs.aws.amazon.com/eks/latest/userguide/cluster-endpoint.html
Other
This is a 🚀 Feature Request
The text was updated successfully, but these errors were encountered: