Some services might have multiple ports open, for normal traffic and debug.
i.e. a service might serve active traffic on 80 and have debugger on 8080.
Currently, when setting ingress, all the declared ports of the service are exposed. This is not something one might want from all sources.
Allowing to indicate which source should have access to specific ports would allow to restrict this further
In the following example, Ingress from 0.0.0.0/0 will only be allowed onto port 80, whereas ingress from 192.168.0.0/24 will be allowed to both ports granted to both ports. When Ports is not specified, assumed all ports (here, 80 and 8080).
Some services might have multiple ports open, for normal traffic and debug. i.e. a service might serve active traffic on
80
and have debugger on8080
.Currently, when setting ingress, all the declared ports of the service are exposed. This is not something one might want from all sources.
Allowing to indicate which source should have access to specific ports would allow to restrict this further
In the following example, Ingress from
0.0.0.0/0
will only be allowed onto port 80, whereas ingress from192.168.0.0/24
will be allowed to both ports granted to both ports. WhenPorts
is not specified, assumed all ports (here, 80 and 8080).