search

syself / cluster-api-provider-hetzner

Cluster API Provider Hetzner 🚀 Kubernetes Infrastructure as Software 🔧 Terraform/Kubespray/kOps alternative for running Kubernetes on Hetzner
https://caph.syself.com
Apache License 2.0
539 stars 51 forks source link

Setting up a basic Firewall on the Cilium side in K8s Cluster CAPI #1325

Open BigBrather opened 1 month ago

BigBrather commented 1 month ago

/kind bug

What steps did you take and what happened:

I did not find a basic Firewall setup using Cilium in this repository.

What did you expect to happen:

I expect that in the end I will be able to close the K8s Cluster created using CAPI using Cilium under the basic Firewall.

Anything else you would like to add:

I would like to get the basic Firewall configuration for Cilium in your version from CAPI, or better yet, a configuration file, because by default we do not close the Firewall when installing K8s Cluster using the CAPI solution.

Environment:

batistein commented 1 month ago

@BigBrather The reason for this is that the firewall depends heavily on your setup. So these kinds of things are out of scope, see also: https://github.com/syself/cluster-api-provider-hetzner?tab=readme-ov-file#-clarifying-scope

BigBrather commented 1 month ago

@batistein I need a basic setup for the Cilium Firewall, not for my installation. But, if CAPI does not have a basic configuration for the CAPI firewall. I'll close this issue.

BigBrather commented 3 weeks ago

@batistein I need a basic setup for the Cilium Firewall, not for my installation. But, if CAPI does not have a basic configuration for the CAPI firewall. I'll close this issue.

@batistein Is it possible to know if there is a basic Cilium setup for CAPI or not?