Restrict Access in Kubernetes

This topic covers how you can restrict access to a Zookeeper pod in a Kubernetes environment.

You can enable/disable a range of source IPs that can access a Zookeeper pod.

Configuration

1. Create vars.zk-access.yml file.

   cd ~/privacera/privacera-manager
   vi config/custom-vars/vars.zk-access.yml
   

2. Add the following property, and enter the correct network CIDR Address. For example, 172.20.0.0/16.

   ZOOKEEPER_K8S_NETWORKING_LOADBALANCER_SOURCE_RANGES:
     - "<PLEASE_UPDATE>"
   

3. Run the following command.

   cd ~/privacera/privacera-manager
   ./privacera-manager.sh update