Reputation: 360
Why can I access kubernetes pod from any worker and master public IP?
Is it normal that I can access a pod through any worker node IP and also through master node IP?
kubectl get pods -o wide shows that the pod is on one specific worker node but I can access it from any master or woker public IP. I have 1 replica of that pod.
Can someone help explain why?
Upvotes: 0
Views: 364
Answers (1)
Reputation: 44657
This is only possible if you are using NodePort type service. It's because by design the NodePort is opened on all nodes in the cluster including master nodes.
From the docs
NodePort: Exposes the Service on each Node's IP at a static port (the NodePort). A ClusterIP Service, to which the NodePort Service routes, is automatically created. You'll be able to contact the NodePort Service, from outside the cluster, by requesting <NodeIP>:<NodePort>
If you are looking for a way to avoid this use ingress with ClusterIP type service.
Upvotes: 1
Related Questions
- Kubernetes - network: pod can access to other pod by IP but not by name. why?
- kubernetes can not access other machine by ip from pod inside
- Kubernetes pods IP should be reachable or pingable from external network - apart from master and worker
- Cannot access CLUSTER-IP from the POD which is in service for the Cluster-IP
- k8s pod can only access the host it is on
- A pod cannot connect to a service by IP
- Why is public IP of my pod different than the load balancer IP?
- kubernetes service exposed to host ip
- Kube expose, requests to any node ip seem to hit the right pod
- Access Pod information using Master Public IP in Kubernetes