tproxy-podwatch

command

v0.0.0-...-6b0e92c Latest Latest Go to latest Published: Sep 16, 2019 License: Apache-2.0 Imports: 19 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/MatsNl/kubernetes-tproxy

Links

Open Source Insights

README ¶

tproxy-podwatch

Kubernetes controller to watch for annoated pods and add/remove local node firewall rules.

Based on the workqueue controller example source.

Must be run with pod.spec.containers.securityContext.privileged: true and pod.spec.hostNetwork: true

Development workflow

Code is built and run in-cluster. Use the kubectl cp command to get new source into the pod and the kubectl exec command to go run the controller in the cluster.

Deploy the dev deployment:

kubectl create -f dev-deployment.yaml

Configure the dev pod:

pod=$(kubectl get pod --selector=run=tproxy-podwatch -o jsonpath='{.items..metadata.name}')
kubectl exec -it ${pod} -- mkdir -p /go/src/github.com/MatsNL/tproxy-podwatch/
kubectl cp main.go ${pod}:/go/src/github.com/MatsNL/tproxy-podwatch/main.go
kubectl exec -it ${pod} -- sh -c 'cd /go/src/github.com/MatsNL/tproxy-podwatch/ && go get ./...'

Run the controller:

./test.sh

Now, make changes to main.go and re-run ./test.sh

Documentation ¶

There is no documentation for this package.

Source Files ¶

View all Source files

main.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL