Support AWS Shield advanced on NLBs not part of ingress controller

kubernetes-sigs / aws-load-balancer-controller

A Kubernetes controller for Elastic Load Balancers

https://kubernetes-sigs.github.io/aws-load-balancer-controller/

Apache License 2.0

3.82k stars 1.41k forks source link

Support AWS Shield advanced on NLBs not part of ingress controller #3752

Open uk-rj opened 1 week ago

uk-rj commented 1 week ago

Currently the ALB controller supports an annotation to enable AWS Shield Advanced for ALB / Ingress resource. alb.ingress.kubernetes.io/shield-advanced-protection

AWS Shield Advanced is also available for NLBs, it would be great if you could provide and annotation and support for enabling of shield-advanced-protection on NLBs created using the service resource. I guess it would also need to provision an elastic IP, linked to the NLB, for advanced shield to work.

shethyogita83 commented 3 days ago

Hello @uk-rj,

Thanks for your feature request to add AWS Shield Advanced support for NLBs on AWS load balancer controller.

We will discuss this with our internal team and see if we can add it to our roadmap.

Thanks