Incidentatlly, I just had a conversation with Manjot (PM) this morning. It is not possible to get rid of the public IP for master since Google needs that to communicate to it for its management.
punit agrawal dev-ops lead new product development ebay From: <kubernetes-users@googlegroups.com> on behalf of Mauricio Castro <mauriciossantiagodecas...@gmail.com> Reply-To: "kubernetes-users@googlegroups.com" <kubernetes-users@googlegroups.com> Date: Friday, September 7, 2018 at 9:50 AM To: Kubernetes user discussion and Q&A <kubernetes-users@googlegroups.com> Subject: [kubernetes-users] private cluster master access and ip Hello all, I am starting with k8s in google, please help me with this doubt regarding private clusters. I made it work just fine based on a pre-defined subnet. great. all closed , all private, nodes have no public ip's, master range is 172.16.4.0/28 as expected and all is good. I was assuming that with this I would only be able to access it (or at least this is what I wanted in the first place) the master with kubectl from inside the vpc against some master private ip from that range 172.16.4.0/28, but the only way I can get to my master with kubectl is by accessing its external public ip that ok I can restrict access to, but is there any other way to get to the master through a internal ip and get rid of the public ip altogether? Thanks. -- You received this message because you are subscribed to the Google Groups "Kubernetes user discussion and Q&A" group. To unsubscribe from this group and stop receiving emails from it, send an email to kubernetes-users+unsubscr...@googlegroups.com<mailto:kubernetes-users+unsubscr...@googlegroups.com>. To post to this group, send email to kubernetes-users@googlegroups.com<mailto:kubernetes-users@googlegroups.com>. Visit this group at https://groups.google.com/group/kubernetes-users<https://na01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgroups.google.com%2Fgroup%2Fkubernetes-users&data=02%7C01%7Cpunagrawal%40ebay.com%7C80471c2891ec4c10df5508d614e1f369%7C46326bff992841a0baca17c16c94ea99%7C0%7C0%7C636719358019385822&sdata=YrYNrbN0GrrwMLrYMZClVKszIO9txtaeSOwNz7kO9GQ%3D&reserved=0>. For more options, visit https://groups.google.com/d/optout<https://na01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgroups.google.com%2Fd%2Foptout&data=02%7C01%7Cpunagrawal%40ebay.com%7C80471c2891ec4c10df5508d614e1f369%7C46326bff992841a0baca17c16c94ea99%7C0%7C0%7C636719358019385822&sdata=3DWSz3Ibz6FRm7cWhBhGySK39HMk%2BAy7pdtEIRWTS1Y%3D&reserved=0>. -- You received this message because you are subscribed to the Google Groups "Kubernetes user discussion and Q&A" group. To unsubscribe from this group and stop receiving emails from it, send an email to kubernetes-users+unsubscr...@googlegroups.com. To post to this group, send email to kubernetes-users@googlegroups.com. Visit this group at https://groups.google.com/group/kubernetes-users. For more options, visit https://groups.google.com/d/optout.
