Segmented
Reputation: 2044
AKS: IP whitelisting (ingress)
I am trying to whitelist IP(s) on the ingress in the AKS. I am currently using the ingress-nginx not installed with Helm.
The mandatory kubernetes resources can be found here
The service is started as:
spec:
externalTrafficPolicy: Local
Full yaml here
My ingress definition is:
apiVersion: extensions/v1beta1
kind: Ingress
metadata:
name: example-ingress
# namespace: ingress-nginx
annotations:
ingress.kubernetes.io/rewrite-target: /
kubernetes.io/ingress.class: nginx
nginx.ingress.kubernetes.io/force-ssl-redirect: "true"
nginx.ingress.kubernetes.io/whitelist-source-range: "xxx.xxx.xxx.xxx"
spec:
rules:
- http:
paths:
- path: /xx-xx
backend:
serviceName: xx-xx
servicePort: 8080
- path: /xx
backend:
serviceName: /xx
servicePort: 5432
The IP whitelisting is not enforced. Am I doing something wrong ?
Upvotes: 1
Views: 3250
Answers (1)
Related Questions
- Aks : whitelist external Ips
- AKS firewall rules to allow
- AKS ingress controller with static ip for a sub-domain
- How to whitelist an nginx ingress custom port
- AKS: --api-server-authorized-ip-ranges filter
- Azure aks could not access to EXTERNAL-IP
- Azure Ingress TCP Forward Network Security Group
- IP whitelisting in google container engine with ingress not working
- Ingress IP with Azure AKS
- Azure Kubernetes (AKS) does not release public IPs