linkedin
  • Become a Seller

How do I restrict CIDR IP addresses for a LoadBalancer type service in Amazon EKS?

Nandini . Sep 20, 2023

A:

To restrict CIDR IP addresses - In your service manifest file (svc.yaml), you can add the .spec.loadBalancerSourceRanges field. To use the manifest file, do this command: $ kubectl apply -f svc.yaml

To make sure that the inbound rules on the security group are modified, run the AWS CLI command, you should try doing the following: If you utilize NLB Ip mode, the .spec.loadBalancerSourceRanges field is ignored by default. This annotation will allow client IP preservation. For this service with network load balancer type, try considering the max-security group limit. For every node port and subnet CIDR range, the controller makes rules on the worker node's security group.

Sep 20, 2023

Was this helpful? upvote icon 2 downvote icon 0
A:

Use Kubernetes Network Policies to restrict incoming traffic to your LoadBalancer service by specifying CIDR IP ranges in the policy.

Feb 14, 2024

Was this helpful? upvote icon 0 downvote icon 0
img

Did not find the question you are looking for?

Get fast answers from real users and our software experts

menlaptop

Have a Question in Mind?

Get answers directly from verified users and our software experts

Software icon representing 20,000+ Software Listed 20,000+ Software Listed

Price tag icon for best price guarantee Best Price Guaranteed

Expert consultation icon Free Expert Consultation

Happy customer icon representing 2 million+ customers 2M+ Happy Customers