Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add a capability to specify IPtags to public IP created as part of workload cluster #2408

Closed
jikuma opened this issue Jun 21, 2022 · 1 comment · Fixed by #2419
Closed

Add a capability to specify IPtags to public IP created as part of workload cluster #2408

jikuma opened this issue Jun 21, 2022 · 1 comment · Fixed by #2419
Assignees
@CecileRobertMichon
Labels
kind/feature Categorizes issue or PR as related to a new feature.
Milestone
v1.5

Comments

@jikuma
Copy link

jikuma commented Jun 21, 2022

/kind feature

Describe the solution you'd like
The workload clusters generated by CAPZ have a public ip for api-server. Azure, by default, assigns the IPs randomly.
We have a network-restricted SAW machine to access production resources. This Saw machine can access only the whitelisted public IP. Since these workload clusters get random public IP, these IPs are not part of whitelisted IPs; hence, these workload clusters cannot be accessed from the SAW machine.

One way to solve this issue is to specify IPtags while creating public ip. Each azure service is assigned an IPtag which is backed by a pool of public IPs. If we set the IP tags, Ips are assigned from the pool of already allocated public Ips. These IPs are whitelisted and hence can be accessed from the SAW machine.

image

Anything else you would like to add:
[Miscellaneous information that will assist in solving the issue.]

Environment:
Public

  • cluster-api-provider-azure version: NA
  • Kubernetes version: (use kubectl version): NA
  • OS (e.g. from /etc/os-release): NA
@k8s-ci-robot k8s-ci-robot added the kind/feature Categorizes issue or PR as related to a new feature. label Jun 21, 2022
@CecileRobertMichon
Copy link
Contributor

/assign

@CecileRobertMichon CecileRobertMichon added this to the v1.4 milestone Jun 23, 2022
@CecileRobertMichon CecileRobertMichon mentioned this issue Jun 23, 2022
Merged
3 tasks
@CecileRobertMichon CecileRobertMichon modified the milestones: v1.4, v1.5 Jul 7, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@CecileRobertMichon CecileRobertMichon

Labels
kind/feature Categorizes issue or PR as related to a new feature.
Projects
None yet
Milestone
v1.5
Development

Successfully merging a pull request may close this issue.

Add support for public IP tags CecileRobertMichon/cluster-api-provider-azure
3 participants
@CecileRobertMichon @k8s-ci-robot @jikuma