Skip to content

Restrict Access in Kubernetes

This topic covers how you can restrict access to a Zookeeper pod in a Kubernetes environment.

You can enable/disable a range of source IPs that can access a Zookeeper pod.

Configuration

  1. Create vars.zk-access.yml file.

    cd ~/privacera/privacera-manager
vi config/custom-vars/vars.zk-access.yml

  2. Add the following property, and enter the correct network CIDR Address. For example, 172.20.0.0/16.

    ZOOKEEPER_K8S_NETWORKING_LOADBALANCER_SOURCE_RANGES:
  - "<PLEASE_UPDATE>"

  3. Run the following command.

    cd ~/privacera/privacera-manager
./privacera-manager.sh update