New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

pkg/: FEATURE: support allowed IPs outside a cluster #179

Merged

squat merged 2 commits into main from location_allowed_ips

Jun 15, 2021

Collaborator

leonnicolas commented May 27, 2021

Users can specify IPs with the annotation "allowed-location-ips".
It makes no difference which node of a location is annotated.
The IP should be routable from the particular location, e.g. a printer in
the same LAN.
This way these IPs become routable from other location.

Signed-off-by: leonnicolas leonloechner@gmx.de

leonnicolas linked an issue

that may be closed by this pull request

Add allowed IPs to a location #164

Closed

squat reviewed

View reviewed changes

pkg/mesh/routes.go Outdated Show resolved Hide resolved

squat reviewed

View reviewed changes

pkg/mesh/routes.go Outdated Show resolved Hide resolved

squat reviewed

View reviewed changes

pkg/mesh/routes.go Outdated Show resolved Hide resolved

squat reviewed

View reviewed changes

pkg/mesh/topology.go Outdated Show resolved Hide resolved

squat reviewed

View reviewed changes

pkg/mesh/topology.go Outdated Show resolved Hide resolved

squat reviewed

View reviewed changes

pkg/mesh/topology.go Outdated Show resolved Hide resolved

squat reviewed

View reviewed changes

pkg/k8s/backend.go Outdated Show resolved Hide resolved

Collaborator Author

leonnicolas commented May 27, 2021

Another question is if we should do any checks. I think you can mess up all networking if you specify a wireguard ip or something out of the pod or service cidr as an allowed location ip?

leonnicolas force-pushed the location_allowed_ips branch from 3659de4 to af32cc7 Compare

May 30, 2021 19:16

squat reviewed

View reviewed changes

Owner

squat left a comment

This LGTM, i only have small aesthetic suggestions.

Fixes #164

pkg/k8s/backend.go Outdated Show resolved Hide resolved

pkg/mesh/routes.go Outdated Show resolved Hide resolved

pkg/mesh/routes.go Outdated Show resolved Hide resolved

pkg/mesh/topology.go Show resolved Hide resolved

leonnicolas marked this pull request as ready for review

June 4, 2021 08:20

Owner

squat commented Jun 4, 2021

Looks amazing! Should we document this in this PR? Or in a follow up PR? i.e. add it to this table: https://github.com/squat/kilo/blob/main/docs/annotations.md#annotations

leonnicolas force-pushed the location_allowed_ips branch from 2228c37 to efddd2c Compare

June 6, 2021 20:12

leonnicolas and others added 2 commits

June 15, 2021 22:17


          pkg/: FEATURE: support allowed IPs outside a cluster

31ffaa0

Users can specify IPs with the annotation "allowed-location-ips".
It makes no difference which node of a location is annotated.
The IP should be routable from the particular location, e.g. a printer in
the same LAN.
This way these IPs become routable from other location.

Signed-off-by: leonnicolas <leonloechner@gmx.de>

Co-authored-by: Lucas Servén Marín <lserven@gmail.com>


          docs/annotations.md: docs for allowed-location-ips

Signed-off-by: leonnicolas <leonloechner@gmx.de>

leonnicolas force-pushed the location_allowed_ips branch from efddd2c to 0255214 Compare

June 15, 2021 20:21

squat approved these changes

View reviewed changes

squat merged commit 311414e into main

squat deleted the location_allowed_ips branch

June 15, 2021 21:07

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet