[AVM Question/Feedback]: Private cluster example with bastion #117
Comments
kubebn
added
Language: Terraform 🌐
|
Hello @kubebn |
|
Hi @zioproto, Yes, I am aware of this and have also tried it. However, we noticed that it’s not very practical from the operators’ perspective. Firstly, it takes longer to apply those commands because they create additional pods inside the cluster in order to invoke them. Secondly, cluster administrators prefer to use their own tools to debug and manage clusters when needed, such as k9s, istioctl for mesh debugging, fluxcd, etc. Thirdly, from an automation and security policy perspective, in some cases, we would not be able to have the az cli installed on the agents. If you believe that the az command better suits those needs, that’s fine. Nevertheless, if you could share documentation, information, or a Terraform example showing how a private cluster can be used with a bastion, it would be greatly appreciated. |
|
Thanks for sharing more context. While we look into the best way of providing guidance for Bastion in this repository, I would point you to this Azure Sample: Would the information provided in that Azure Sample help with Bastion ? |
|
Warning Tagging the AVM Core Team (@Azure/avm-core-team-technical-terraform) due to a module owner or contributor having not responded to this issue within 3 business days. The AVM Core Team will attempt to contact the module owners/contributors directly. Tip
|
microsoft-github-policy-service
bot
added
the
Status: Response Overdue 🚩
nellyk
removed
Needs: Triage 🔍
Check for previous/existing GitHub issues
Description
Hello,
It would be helpful to have an example of a private cluster with a bastion host in the “examples” subfolder. This would serve as a starting point for those unfamiliar with the Azure/AKS ecosystem. If we look at AWS/GKE modules, they provide examples of how this can be managed via Terraform. Thank you.
The text was updated successfully, but these errors were encountered: