1 Answer
0
The EKS cluster control plane IP addresses will vary depending on the configuration of the VPC and Subnets where the EKS cluster is configured. The cluster will configure one ENI in each selected subnet, consuming one IP address from the subnet's configured CIDR block. You can view these ENIs from the AWS Management Console, in the EC2 Dashboard, under the Network interfaces section. Keep in mind, that these IP addresses may change due to the cluster upgrades.
answered 6 months ago
Relevant questions
Implications of automatic EKS Platform version update
asked 6 months agocoredns remains Degraded after EKS cluster creation
asked a month agoAdding Nodes in EKS getting >>nodecreationfailure eks - Nodes instances failed to join the kubernetes cluster
Accepted Answerasked 8 months agoEKS Anywhere Support
asked 5 months agoUnable to create EKS Cluster
asked 5 months agoAmazon EKS service IP addresses
asked 7 months agoEKS Node Group with RI
Accepted Answerkubectl error You must be logged in to the server (Unauthorized) when accessing EKS cluster
asked a month agoWhat is "Service IPv4 range" in EKS console?
asked 6 months agoWhat is the difference between iam-aws-authenticator and aws eks get-token?
asked 2 years ago
I'm aware that the EKS cluster control plane IP addresses will vary. I need a list with the CIDRs used by the EKS control plane, to differentiate in Cloud Trail if an event is from AWS or a bad actor. For: Amazon EKS uses the authentication token to make the sts:GetCallerIdentity call. As a result, AWS CloudTrail events with the name GetCallerIdentity from the source sts.amazonaws.com can have Amazon EKS service IP addresses for their source IP address. I need the Amazon EKS service IP addresses list.