mirrors/kubernetes-the-hard-way
1
0
Fork 0
mirror of https://github.com/kelseyhightower/kubernetes-the-hard-way.git synced 2025-07-27 14:13:53 +03:00
Code Issues Projects Releases Wiki Activity

Add firewall rule to allow pods access to PodCIDR

Browse Source 
This fixes issue #88 to allow pods access to PodCIDR such as the case of
DNS. When pods come up with an IP address in the cluster CIDR range,
they cannot access kubedns without a firewall rule to enable it. This
would also prevent pods from accessing each other depending on the
application.
This commit is contained in:
Ivan Font
2017-01-20 09:32:53 -08:00
committed by Kelsey Hightower
parent a759be0db3
commit d3cd897b08
1 changed files with 7 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
docs/01-infrastructure-gcp.md
View File

@@ -63,6 +63,13 @@ gcloud compute firewall-rules create kubernetes-allow-internal \
--source-ranges 10.240.0.0/24
```
```
gcloud compute firewall-rules create kubernetes-allow-internal-podcidr \
--allow tcp:0-65535,udp:0-65535,icmp \
--network kubernetes \
--source-ranges 10.200.0.0/16
```
```
gcloud compute firewall-rules create kubernetes-allow-rdp \
--allow tcp:3389 \