Add a firewall rule to open the LB health check and service port(s) when using `service.beta.kubernetes.io/do-loadbalancer-type=REGIONAL_NETWORK`

digitalocean / digitalocean-cloud-controller-manager

Kubernetes cloud-controller-manager for DigitalOcean (beta)

Apache License 2.0

524 stars 148 forks source link

Add a firewall rule to open the LB health check and service port(s) when using `service.beta.kubernetes.io/do-loadbalancer-type=REGIONAL_NETWORK` #748

Closed bbassingthwaite closed 1 month ago

bbassingthwaite commented 1 month ago

Since NLB will route traffic over the public interface for both the LB data plane and health checks, we will need to open the appropriate health check port. This change only affects LBs who set the annotation service.beta.kubernetes.io/do-loadbalancer-type=REGIONAL_NETWORK and the network is EXTERNAL (default).