I would like to limit access to my dns link
I am using a GKE kubernetes cluster and Traefik v2.
I use the configuration from the traefik documentation
Here is my configuration:
- kind: Rule
- name: prometheus-operator-grafana
# secure web_ui
- name: prometheus-ipwhitelist
kubeclt apply -f
When I type the link dns
mycompagny.com the result is:
Thank you in advance for your help
Noone got a clue on this ?
Hello I was able to solve my problem
The problem is that when I try to access my
mycompagny.com domain name with the IPs listed at the SourceRange level.
Once the traffic arrives on the cluster there is a resolution of IP address (NAT principle), as it is not the correct source IP address which arrives at traefik level, the middleware blocks the traffic.
To solve the problem: it is necessary to modify the service of the controlled ingress, by adding
externaltrafficpolicy: Local. Allows to Preserving the client source IP
See kubernetes documentation kubernetes documentation
- name: http
- name: https
And it works great
This topic was automatically closed 3 days after the last reply. New replies are no longer allowed.