Reputation: 30819
Google Cloud : Outbound IP Address for GKE
I have the following setup:
- GKE running in a cloud project with ingress IP restriction
- Dataflow running in another project that needs to access the API exposed by GKE
Dataflow has variable number of workers and hence, I will have different IP address. Is there any way by which I can setup an outbound IP for all the dataflows (when they send a REST request) so that I can filter those requests out at GKE's end.
I have explored Cloud VPN but that might not work as I do not have control over GKE project. I just want an IP that I can provide to GKE load balancer to white list.
Upvotes: 1
Views: 903
Answers (1)
Reputation: 1452
If you can't really ask the other project owners to setup a VPC and create a firewall rule to allow only a specific tag (such as dataflow), then you could use a VM with a static external IP as a proxy to the Kubernetes cluster.
This is because you can not know up front what IPs will the Dataflow workers get, so indeed you will get workers within a very large IP range. I think using a specific network tag would be very helpful in this case, since all the Dataflow workers will get that tag.
Upvotes: 1
Related Questions
- How to set static internal IP to the GKE internal Ingress
- Accessing GKE internal LB IP from internet
- GKE: IP Addresses
- Google Kubernetes Engine - From External IP to Cloud Endpoint Configuration
- Setting up internal service on GKE without external IP
- Google Cloud kubernetes engine external ip
- Kubernetes cluster outgoing traffic IP
- Google Cloud Kuberneties: Finding the external IP address for pods
- Google Kubernetes Engine Broadcast Address
- How to assign custom external/public IP for Kubernetes v1.2 Ingress resource on GKE?