Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Separate subnets for control plane nodes #1532

Closed
2 tasks
alex-dabija opened this issue Oct 18, 2022 · 1 comment
Closed
2 tasks

Separate subnets for control plane nodes #1532

alex-dabija opened this issue Oct 18, 2022 · 1 comment
Labels
area/kaas Mission: Cloud Native Platform - Self-driving Kubernetes as a Service kind/story provider/cluster-api-aws Cluster API based running on AWS topic/capi

Comments

@alex-dabija
Copy link

alex-dabija commented Oct 18, 2022
edited
Loading

Story

-As a cluster admin, I want the control plane nodes to be on separate subnets (one per availability zone) in order to have clear network boundaries.

Towards epic.

Background

Cluster API for AWS (CAPA) in its default configuration puts all the (control plane & worker) nodes to the same subnet (there is one per availability zone).

Some customers want a clear separation between control plane nodes and worker nodes because they use a transit gateway which filters traffic based on its source (CIDR).

The aws-vpc-operator is able to create all the required subnets with CIDRs configured.

Requirements

  • separate subnets for the control plane nodes (one per availability zone);
  • each subnet CIDR needs to be configurable;
  • CAPA needs to be able to choose the right subnet for each availability zone where control plane nodes are running.

TODOs

  • check if it's possible to have the control plane nodes runnig on separate subnets with specific tags;
  • expose configuration settings via values.yaml in cluster-aws to configure the control plane subnets.
@alex-dabija alex-dabija added area/kaas Mission: Cloud Native Platform - Self-driving Kubernetes as a Service team/hydra topic/capi provider/cluster-api-aws Cluster API based running on AWS kind/story labels Oct 18, 2022
@alex-dabija alex-dabija mentioned this issue Dec 13, 2022
Closed
7 tasks
@alex-dabija alex-dabija moved this to Near Term (1-3 months) in Roadmap Jan 10, 2023
@alex-dabija
Copy link
Author

Implemented and released as part of cluster-aws v0.21.0.

@github-project-automation github-project-automation bot moved this from Near Term (1-3 months) to Released in Roadmap Jan 24, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
area/kaas Mission: Cloud Native Platform - Self-driving Kubernetes as a Service kind/story provider/cluster-api-aws Cluster API based running on AWS topic/capi
Projects
Roadmap
Archived in project
Milestone
No milestone
Development

No branches or pull requests
1 participant
@alex-dabija