Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

feat: Add support for specifying conrol plane subnets separate from those used by node groups (data plane) #2113

Conversation

bryantbiggs
Copy link
Member

@bryantbiggs bryantbiggs commented Jun 18, 2022

Description

  • Add support for specifying conrol plane subnets separate from those used by node groups (data plane)
  • Update version 1.21 references to 1.22
  • Update K8s auth API version from v1alpha1 to v1beta1 in examples

Motivation and Context

  • Setting small, specific subnets for the EKS control plane allows users to expand their data plane later on by adding additional subnets to the data plane. However, you cannot modify the EKS control plane subnets as this will cause the control plane to be replaced/recreated which is disruptive. This is useful for large clusters (aka - "jumbo clusters") where VPCs might be stacking CIDR ranges and additional subnets added to the data plane to support the required number of IPs

Breaking Changes

  • No

How Has This Been Tested?

  • I have updated at least one of the examples/* to demonstrate and validate my change(s)
  • I have tested and validated these changes using one or more of the provided examples/* projects
  • I have executed pre-commit run -a on my pull request

@bryantbiggs bryantbiggs changed the title feat: Add support for specifying subnets separate from those used by node groups feat: Add support for specifying conrol plane subnets separate from those used by node groups (data plane) Jun 18, 2022
@bryantbiggs bryantbiggs requested a review from antonbabenko June 18, 2022 16:08
Copy link
Member

@antonbabenko antonbabenko left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@@ -331,6 +332,7 @@ module "vpc" {
azs = ["${local.region}a", "${local.region}b", "${local.region}c"]
private_subnets = ["10.0.1.0/24", "10.0.2.0/24", "10.0.3.0/24"]
public_subnets = ["10.0.4.0/24", "10.0.5.0/24", "10.0.6.0/24"]
intra_subnets = ["10.0.7.0/28", "10.0.7.16/28", "10.0.7.32/28"]
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

A good use-case for intra_subnets!

@@ -44,8 +44,14 @@ variable "cluster_additional_security_group_ids" {
default = []
}

variable "control_plane_subnet_ids" {
description = "A list of subnet IDs where the EKS cluster control plane (ENIs) will be provisioned. Used for expanding the pool of subnets used by nodes/node groups without replacing the EKS control plane"
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

ENIs = Elastic Network Interfaces, or what?

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Correct - Elastic Network Interfaces

@bryantbiggs bryantbiggs merged commit ebc91bc into terraform-aws-modules:master Jun 18, 2022
@bryantbiggs bryantbiggs deleted the feat/control-plane-subnets branch June 18, 2022 21:52
antonbabenko pushed a commit that referenced this pull request Jun 18, 2022
## [18.24.0](v18.23.0...v18.24.0) (2022-06-18)

### Features

* Add support for specifying conrol plane subnets separate from those used by node groups (data plane) ([#2113](#2113)) ([ebc91bc](ebc91bc))
@antonbabenko
Copy link
Member

This PR is included in version 18.24.0 🎉

@MRostanski
Copy link

Kudos @bryantbiggs! That is good scalability opportunity.

spr-mweber3 pushed a commit to spring-media/terraform-aws-eks that referenced this pull request Jul 11, 2022
spr-mweber3 pushed a commit to spring-media/terraform-aws-eks that referenced this pull request Jul 11, 2022
## [18.24.0](terraform-aws-modules/terraform-aws-eks@v18.23.0...v18.24.0) (2022-06-18)

### Features

* Add support for specifying conrol plane subnets separate from those used by node groups (data plane) ([terraform-aws-modules#2113](terraform-aws-modules#2113)) ([ebc91bc](terraform-aws-modules@ebc91bc))
baibailiha added a commit to baibailiha/terraform-aws-eks that referenced this pull request Sep 13, 2022
## [18.24.0](terraform-aws-modules/terraform-aws-eks@v18.23.0...v18.24.0) (2022-06-18)

### Features

* Add support for specifying conrol plane subnets separate from those used by node groups (data plane) ([#2113](terraform-aws-modules/terraform-aws-eks#2113)) ([6847443](terraform-aws-modules/terraform-aws-eks@6847443))
@github-actions
Copy link

github-actions bot commented Nov 8, 2022

I'm going to lock this pull request because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues. If you have found a problem that seems related to this change, please open a new issue and complete the issue template so we can capture all the details necessary to investigate further.

@github-actions github-actions bot locked as resolved and limited conversation to collaborators Nov 8, 2022
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

3 participants