Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jumpbox in its own Vnet #74

Draft
wants to merge 2 commits into
base: main
Choose a base branch
from

Conversation

v-fearam
Copy link
Contributor

@v-fearam v-fearam commented Dec 30, 2022

I was working on the vnet-jumbox ticket.
The goods:

  • There is a new vnet for Jumbox
  • The vnet is a new spoke in the same region
  • The Jumpbox is on the new vnet
  • We are able to operate from that vnet

The bads. It was not able to create a private link/dns on the new vnet to access the cluster api. The current design use the FireWall as proxy DNS. There is a private dns on the hub vnet which resolve the current private ip for the cluster api.
Maintaining that design I’m not able to create a second private DNS against the same cluster api to resolve another private ip (the private endpoint in the new vnet). In the current design it must be on the hub vnet entering in conflict with the current one.
Now the traffic is allowed to move from the new Jumpbox vnet to the firewall, allowed in the firewall , and then moved to the cluster vnet private ip to access the cluster api.
The main image was not changed.

@v-fearam v-fearam force-pushed the feature/move-jumpbox-ownvnet branch from b0a3b53 to 584cdb9 Compare December 30, 2022 18:11
@v-fearam v-fearam changed the title Creating vnet.More vnet refactoring. Changing documentation Vnet local against flux extension Dec 30, 2022
@v-fearam v-fearam changed the title Vnet local against flux extension Jumpbox in its own Vnet Dec 30, 2022
@v-fearam v-fearam requested a review from ckittel January 3, 2023 16:31
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant