AKS Egress Traffic and Outbound Types
Vložit
- čas přidán 23. 04. 2023
- AKS have multiple options to manage the egress or outbound traffic. These options are Load Balancer, NAT Gateway and User Defined Routing (UDR). In this lightboard session, I explain all these modes available in #Azure #Kubernetes #AKS.
The outbound type Load Balancer is the default mode and should fit for most cases.
However, if we might have the issue of SNAT port exhaustion, then we should use the NAT Gateway mode.
And for enterprises using Landing Zone, Hub & Spoke architecture and wants to control and filter the AKS egress traffic, they should use the User Defined Routing (UDR) mode.
With this latter mode, we should pay attention to the asymmetric routing for ingress traffic.
Source code and resources are available here: github.com/HoussemDellai/dock...
Follow me on Twitter for more content: / houssemdellai - Věda a technologie
![kubernetes, ingress controller [1] - теория](/img/n.gif)
Hello Houssem. Great explanation. It would be great to hear how to have outbound/NAT not on public but on private IP. Generaly I've been searching but there is no doc or article at all.
That was really helpful, Thank you Houssem
effective explanation to understand easily
This is nice... was lookin at these a few days back...
Super explain
Thanks hussam , please explain more about how to design and choose ingress and load balancer for multiple cluster and multi-tenancy
This is nice sharing... but I don't quite understand when ingress using Application gateway egress should use Azure Firewall or not ?
I'm not sure I understand.
So you mentioned we can use the same public ip of the firewall for the LB? Then we still need DNAT? can you elaborate on this more?