cloud-provider-azure
cloud-provider-azure copied to clipboard
kubernetes-sigs
LoadBalancerSku should default to Standard
ClusterConfig defaults loadBalancerSku to basic: https://cloud-provider-azure.sigs.k8s.io/install/configs/#cluster-config.
On 30 September 2025, Basic SKU public IP addresses will be retired in Azure. You can continue to use your existing Basic SKU public IP addresses until then, however, you'll no longer be able to create new ones after 31 March 2025.
Basic SKU is being retired. We should not be defaulting to basic for LB and public IP SKUs.
Standard SKU public IP addresses offer significant improvements, including:
- Access to a variety of other Azure products, including Standard Load Balancer, Azure Firewall, and NAT Gateway.
- Security by default—closed to inbound flows unless allowed by a network security group.
- Zone-redundant and zonal front ends for inbound and outbound traffic.
Even if the retirement date is 3 years away, we should consider making this change now as the default value should reflect the recommended best practices in Azure.
@CecileRobertMichon thanks for raising this issue. Are there any graceful update support plans in capz or aks-engine?
CAPZ never supported basic LBs. AKS Engine will be deprecated long before retirement.
/cc @bridgetkromhout
The Kubernetes project currently lacks enough contributors to adequately respond to all issues and PRs.
This bot triages issues and PRs according to the following rules:
- After 90d of inactivity,
lifecycle/staleis applied - After 30d of inactivity since
lifecycle/stalewas applied,lifecycle/rottenis applied - After 30d of inactivity since
lifecycle/rottenwas applied, the issue is closed
You can:
- Mark this issue or PR as fresh with
/remove-lifecycle stale - Mark this issue or PR as rotten with
/lifecycle rotten - Close this issue or PR with
/close - Offer to help out with Issue Triage
Please send feedback to sig-contributor-experience at kubernetes/community.
/lifecycle stale
