Question
Restrict kubernetes worker nodes network access for tags
- Posted on April 8, 2024
- FirewallDigitalOcean Managed Kubernetes
Asked by Sergei Efremov
Hello! I want to restrict access to kubernetes nodes from certain tags, for example - droplets with different tags being on the same subnet. In case of applying such a firewall to a droplet there is no problem, but in my case - when creating kubernetes, cloud automatically creates its firewall, which cannot be changed (https://docs.digitalocean.com/products/kubernetes/details/managed/#worker-node-firewalls). I can create my own firewall, but it only allows opening new rules, but not closing. How can I restrict access to kubernetes worker node from certain tags?
Example: I want both kubernetes clusters to be accessible from one droplet and only one kubernetes cluster to be accessible from the other droplet. Droplets should have full internet access
This textbox defaults to using Markdown to format your answer.
You can type !ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!
Featured on Community
Get our biweekly newsletter
Sign up for Infrastructure as a Newsletter.
Hollie's Hub for Good
Working on improving health and education, reducing inequality, and spurring economic growth? We'd like to help.
Become a contributor
Get paid to write technical tutorials and select a tech-focused charity to receive a matching donation.
