kubespray icon indicating copy to clipboard operation
kubespray copied to clipboard

Published 20 hours ago verified publisher icon kubernetes-sigs

Add Node IPs to kubelet systemd service allowed IP addresses for cluster hardening

Open hadi2f244 opened this issue 8 months ago • 4 comments

What type of PR is this? /kind bug

What this PR does / why we need it:

Get all node IPs to the list of allowed IP addresses IPAddressAllow in the kubelet.service configuration to resolve an issue preventing kube-proxy pods from starting correctly when kubelet_systemd_hardening: true is applied to Kubernetes clusters.

Which issue(s) this PR fixes:

Fixes #11289

Special notes for your reviewer:

Does this PR introduce a user-facing change?:

None

hadi2f244 avatar Jun 10 '24 15:06 hadi2f244