Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Node private networking #287

Merged
merged 3 commits into from
Oct 31, 2018
Merged

Node private networking #287

merged 3 commits into from
Oct 31, 2018

Conversation

errordeveloper
Copy link
Contributor

@errordeveloper errordeveloper commented Oct 26, 2018
edited
Loading

Description

Add --node-private-networking flag, which will make initial nodegroup use private subnet.

Checklist

  • Code compiles correctly (i.e make build)
  • Added tests that cover your change (if possible)
  • All tests passing (i.e. make test)

@errordeveloper errordeveloper force-pushed the node-private-networking branch from 83afbe2 to 27aa8f4 Compare October 26, 2018 15:34
@errordeveloper errordeveloper mentioned this pull request Oct 27, 2018
Closed
@errordeveloper
Copy link
Contributor Author

cc @mwelch-ptc @shatil

@errordeveloper errordeveloper mentioned this pull request Oct 27, 2018
Closed
@mwelch-ptc
Copy link

This is terrific! I look forward to trying it out.

@errordeveloper errordeveloper force-pushed the node-private-networking branch from 27aa8f4 to 249228c Compare October 29, 2018 17:31
@errordeveloper
Copy link
Contributor Author

It's ready for someone to review, but I'd like to make sure it does what's intended (in theory it should, but I might have missed something).

@errordeveloper errordeveloper force-pushed the node-private-networking branch 6 times, most recently from b0cc9e2 to 8db1275 Compare October 30, 2018 08:19
@errordeveloper errordeveloper changed the title WIP: Node private networking Node private networking Oct 30, 2018
@errordeveloper errordeveloper changed the title Node private networking WIP: Node private networking Oct 30, 2018
@errordeveloper
Add --node-private-networking flag
9544a48 
- add docs
- include NAT Gateway
- ensure control plane also connects to private subnets
- ensure `kubernetes.io/role/internal-elb=1` tag is set properly
- ensure SSH port is only accessible inside the VPC
- use boolean ng.PrivateNetworking field and helper method to get string
  instead of string ng.SubnetTopology field
@errordeveloper errordeveloper force-pushed the node-private-networking branch from 8db1275 to 9544a48 Compare October 30, 2018 08:27
@errordeveloper errordeveloper changed the title WIP: Node private networking Node private networking Oct 30, 2018
@errordeveloper errordeveloper force-pushed the node-private-networking branch from 95e83a0 to d852d5f Compare October 31, 2018 14:52
stefanprodan
stefanprodan approved these changes Oct 31, 2018
View reviewed changes
Copy link
Contributor

@stefanprodan stefanprodan left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

GG @errordeveloper

@errordeveloper
Copy link
Contributor Author

Thanks @stefanprodan!

@errordeveloper errordeveloper merged commit fa8e249 into master Oct 31, 2018
@errordeveloper errordeveloper deleted the node-private-networking branch October 31, 2018 15:39
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@golangcibot golangcibot golangcibot left review comments

@stefanprodan stefanprodan stefanprodan approved these changes

@gruebel gruebel Awaiting requested review from gruebel

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Private Subnets for Worker Nodes
4 participants
@errordeveloper @mwelch-ptc @stefanprodan @golangcibot