Aws-load-balancer-controller: Static IPs for NLB
Is it possible to specify a static IP for the NLB via annotations?
It seems the subnets are automatically being specified for the NLB but is it possible or feasible to specify static IPs like we can do if we create an NLB ourselves?
We need to whitelist some target IPs and our subnet ranges are too large.
amalagaura
All 4 comments
For internet-facing load balancer, you can specify the EIP allocations via the annotation service.beta.kubernetes.io/aws-load-balancer-eip-allocations. For internal load-balancers, we don't have a similar annotation currently.
Subnets are currently auto-discovered. We will be adding support for manually specifying subnets via annotation - #1576
As for the whitelist you mentioned, is it specific to your application?
kishorj
on 10 Nov 2020
Yes sorry I didn't mention that it is for the private IP space.
The whitelist is specific to our environment. We need to pass on our load balancer IPs for another firewall and are trying to avoid sending the entire subnet to be whitelisted.
amalagaura
on 10 Nov 2020
/kind feature
For the ability to specify static IP for internal load balancers.
kishorj
on 11 Nov 2020
/assign kishorj
kishorj
on 9 Dec 2020
Related issues
joseppla
路
5Comments
rootd00d
路
4Comments
gigi-at-zymergen
路
5Comments
JakubJecminek
路
5Comments
sawanoboly
路
5Comments
Most helpful comment
Yes sorry I didn't mention that it is for the private IP space.
The whitelist is specific to our environment. We need to pass on our load balancer IPs for another firewall and are trying to avoid sending the entire subnet to be whitelisted.