K
Q

Connection from private cluster pods to another private clusters master

7/1/2019

Is it possible to establish a connection between the pods of a private cluster to another private clusters master in separated regions? Just by adding the pod and node ip range to the other master authorized networks did not do the trick.

-- Jan Schumacher
google-kubernetes-engine

Similar Questions

How to start stopped container using kubernetes?
metrics-server request canceled while waiting for connection on Kubernetes
aws eks kubernetes log into Cloudwatch
Kubernetes RBAC rules for PersistentVolume
Clean Ambassador Edge Stack install on GKE fails with DNS resolving
Fluent applying same filter on two different sources
Run jenkins slave nodes on an eks cluster by kubernetes plugin
How can I get insight in what the control plane does in K8s?
Oauth2-Proxy do not pass X-Auth-Request-Groups header

1 Answer

7/3/2019

This won't work. The private master endpoint is a regional resource (essentially an internal Load Balancer which is a regional resource). Since both clusters are private, they won't be able to communicate using external endpoints and cross region requests won't work.

You have 2 options:

  1. Set up a proxy that can forward the requests

  2. use public endpoints and configure a nat (Cloud nat or a unmanaged nat). Secure the public endpoint using Master Authorized Networks to ensure that only authorized IPs are able to access the k8s API

-- Patrick W
Source: StackOverflow