Reputation: 9
Port 22 is open by default in public cluster GKE
This page says that port 22 is open for public clusters in GKE:
"For public clusters only. Permits the control plane to access the Kubelet and metrics-server on cluster nodes."
https://cloud.google.com/kubernetes-engine/docs/concepts/firewall-rules
I was wondering is this only used for troubleshooting and metrics or if I remove that firewall rule the cluster will stop working?
Thank you!
Upvotes: 0
Views: 538
Answers (1)
Reputation: 702
Welcome to stackoverflow..,
SSH firewall rule not required for the correct functioning of the cluster. If that firewall rule is removed then the kubectl logs, attach, exec, and port-forward commands stop responding.
For more information refer the link
In this stackoverflow link you can clearly find what type of errors will occur if that firewall rule has been removed.
But don't delete as suggested by John Hanley.
Upvotes: 1
Related Questions
- how to ssh into nodes of Google container engine cluster?
- How can you SSH to a GKE node (Private/Public)?
- How can I SSH to my GCP Kubernetes cluster?
- GCP GKE cluster node throws {"unmanaged": {"fs.aio-nr": "2272", "net.ipv4.tcp_fastopen_key"
- How do I ssh to nodes in a kubernetes/GKE cluster on GCP
- Can we open port to allow traffic from GKE master?
- SSH into GKE private cluster node
- Google cloud kubernetes unable to connect to cluster
- Why the ambiguous outbound access from GKE private cluster?
- Unable to ssh into GCE docker container