By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

EKS multi subnet communication

0

Hello, I would like to deploy an EKS cluster on private and public in order to expose some services to internet. In my organisation, communication between components in private subnets and public one are managed by firewall rules. If I deploy my cluster and nodes to private subnet everything is ok but if I add public subnet to my control plan for being able to deploy ALB then EKS change nodes status to unknown. I guess it's because communication between private and public subnets are blocked by my internal firewall. In order to create firewall request , i would like to know what are the network traffic I need to allow between subnet for having ready nodes status ? Rgds.

Topics
ContainersAWS Well-Architected Framework
Tags
Amazon Elastic Container ServiceSecurity
Language
English
jerome
asked 24 days ago448 views
2 Answers
1

Hello Jerome,

Kindly check this detailed guide- https://medium.com/@debolek4dem/guides-on-how-amazon-eks-cluster-operates-correctly-when-using-both-private-and-public-subnets-6ad54547c505

profile picture
EXPERT
A_J
answered 24 days ago
profile pictureAWS
EXPERT
iBehr
reviewed 23 days ago
0

Basically you need to check logs(Kubelet) and communication between worker nodes and control plane. This is reason that cause the node in node ready state.

Please check following guides to troubleshoot this issues.

https://repost.aws/knowledge-center/eks-worker-node-not-ready

https://repost.aws/knowledge-center/eks-node-status-ready

AWS
rePost-User-4975793
answered 23 days ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content