Can I remove the external IP from my GKE cluster?

networking google-cloud-platform google-kubernetes-engine hipaa

It is now possible to create a private Kubernetes cluster on GKE.

The master is inaccessible from the public internet by default and your nodes do not have any public IP addresses.

You still need to access the master, otherwise your cluster will be useless :) For that reason you need to add master authorized networks, where you assign one or more public ip addresses that are allowed to connect to the master instance.


Google Kubernetes Engine has a beta feature called Master Authorized Networks that allows you to restrict traffic to the IP of your hosted Kubernetes control plane by CIDR blocks. Note that GCE public IPs will still be able to access your cluster endpoint, so it isn't as good as fully private clusters but it is much better than having the IP available to the entire internet.

Related

Mapping SAN to cluster nodes
2 x RAID1 vs. RAID10 with four disks
Nginx rewrite with if statement
Data Channel Port Range box in IIS Manager is disabled
How to inherit the commonName to the subject alternative name
Certbot renew certificates with autoprovided webroot
Apache - Need to rewrite /contact/ to /contact.php
Cannot add a self signed certificate in Firefox
Can I RDP through mstsc and run a script on that remote desktop?
Why does curl work with a specific https site, but wget has problems with certificates?
How can I get Microsoft Command Line Utilities 14 for SQL Server to install?
How do I execute manage.py in Google App Engine?