kubeletdnatcontroller

package

v2.24.5 Latest Latest Go to latest Published: Mar 21, 2024 License: Apache-2.0 Imports: 21 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Package kubeletdnatcontroller contains the kubeletdnat controller which:

Is needed for all controlplane components running in the seed that need to reach nodes
Is not needed if reaching the pods is sufficient
Must be used in conjunction with the openvpn client
Creates NAT rules for both the public and private node IP that tunnels access to them via the VPN
Its counterpart runs within the openvpn client pod in the usercluster, is part of the openvpn addon and written in bash

View Source

const (
	ControllerName = "kkp-kubeletdnat-controller"
)

This section is empty.

func Add(
	mgr manager.Manager,
	nodeTranslationChainName string,
	nodeAccessNetwork net.IP,
	log *zap.SugaredLogger,
	vpnInterface string,
) error

NewController creates a new controller for the specified data.

type Reconciler struct {
	ctrlruntimeclient.Client
	// contains filtered or unexported fields
}

Reconciler updates iptable rules to match node addresses. Every node address gets a translation to the respective node-access (vpn) address.

func (r *Reconciler) Reconcile(ctx context.Context, request reconcile.Request) (reconcile.Result, error)