Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add example for Amazon VPC CNI Network Policy feature #1747

Closed
valentinwidmer opened this issue Sep 6, 2023 · 4 comments · Fixed by #1781
Closed

Add example for Amazon VPC CNI Network Policy feature #1747

valentinwidmer opened this issue Sep 6, 2023 · 4 comments · Fixed by #1781
Assignees
@valentinwidmer
Labels
blueprint documentation Improvements or additions to documentation enhancement New feature or request

Comments

@valentinwidmer
Copy link
Contributor

Community Note

  • Please vote on this issue by adding a 👍 reaction to the original issue to help the community and maintainers prioritize this request
  • Please do not leave "+1" or other comments that do not add relevant new information or questions, they generate extra noise for issue followers and do not help prioritize the request
  • If you are interested in working on this issue or have submitted a pull request, please leave a comment

What is the outcome that you are trying to reach?

Amazon announced native Network Policy support through Amazon VPC CNI (https://aws.amazon.com/about-aws/whats-new/2023/08/amazon-vpc-cni-kubernetes-networkpolicy-enforcement/). Adding an example how to use Network Policies with Amazon VPC CNI helps user to get started.

Describe the solution you would like

Add TF code (inside examples folder) how to use Network Policies with Amazon VPC CNI

Describe alternatives you have considered

N/A

Additional context
@askulkarni2 askulkarni2 moved this to In Progress in EKS Blueprints Sep 6, 2023
@askulkarni2 askulkarni2 added documentation Improvements or additions to documentation enhancement New feature or request blueprint labels Sep 6, 2023
@csantanapr
Copy link
Contributor

Thank you for working on this @valentinwidmer 👍

@alanwu4321
Copy link

alanwu4321 commented Oct 1, 2023
edited
Loading

are there examples or PRs? If not I could help contribute

my own setting

    vpc-cni = {
      configuration_values = jsonencode({
        enableNetworkPolicy = "true",
        init = {
          env = {
            DISABLE_TCP_EARLY_DEMUX = "true"
          }
        }
        env = {
          ENABLE_POD_ENI                    = "true",
          POD_SECURITY_GROUP_ENFORCING_MODE = "standard",
          AWS_VPC_K8S_CNI_EXTERNALSNAT      = "true"
      } })
    }

@valentinwidmer valentinwidmer mentioned this issue Oct 4, 2023
Merged
3 tasks
@valentinwidmer
Copy link
Contributor Author

valentinwidmer commented Oct 4, 2023
edited
Loading

Created pull request for review: #1781

@valentinwidmer
Copy link
Contributor Author

valentinwidmer commented Oct 4, 2023
edited
Loading

are there examples or PRs? If not I could help contribute

my own setting

    vpc-cni = {
      configuration_values = jsonencode({
        enableNetworkPolicy = "true",
        init = {
          env = {
            DISABLE_TCP_EARLY_DEMUX = "true"
          }
        }
        env = {
          ENABLE_POD_ENI                    = "true",
          POD_SECURITY_GROUP_ENFORCING_MODE = "standard",
          AWS_VPC_K8S_CNI_EXTERNALSNAT      = "true"
      } })
    }

Hi @alanwu4321 . Thanks a lot for your contribution. I've already raised a PR #1781

@fcarta29 fcarta29 moved this from In Progress to Done in EKS Blueprints Oct 25, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@valentinwidmer valentinwidmer

Labels
blueprint documentation Improvements or additions to documentation enhancement New feature or request
Projects
EKS Blueprints
Status: Done
Milestone
No milestone
4 participants
@csantanapr @askulkarni2 @valentinwidmer @alanwu4321