Class EndpointAccess

(experimental) Endpoint access characteristics.

Inheritance

object

EndpointAccess

Namespace: Amazon.CDK.AWS.Eks.V2.Alpha

Assembly: Amazon.CDK.AWS.Eks.V2.Alpha.dll

Syntax (csharp)

public class EndpointAccess : DeputyBase

Syntax (vb)

Public Class EndpointAccess Inherits DeputyBase

Remarks

Stability: Experimental

ExampleMetadata: infused

Examples

var cluster = new Cluster(this, "hello-eks", new ClusterProps {
                 Version = KubernetesVersion.V1_32,
                 EndpointAccess = EndpointAccess.PRIVATE
             });

Synopsis

Properties

PRIVATE	(experimental) The cluster endpoint is only accessible through your VPC.
PUBLIC	(experimental) The cluster endpoint is accessible from outside of your VPC.
PUBLIC_AND_PRIVATE	(experimental) The cluster endpoint is accessible from outside of your VPC.

Methods

OnlyFrom(params string[])

(experimental) Restrict public access to specific CIDR blocks.

Properties

PRIVATE

(experimental) The cluster endpoint is only accessible through your VPC.

public static EndpointAccess PRIVATE { get; }

Property Value

EndpointAccess

Remarks

Worker node traffic to the endpoint will stay within your VPC.

Stability: Experimental

PUBLIC

(experimental) The cluster endpoint is accessible from outside of your VPC.

public static EndpointAccess PUBLIC { get; }

Property Value

EndpointAccess

Remarks

Worker node traffic will leave your VPC to connect to the endpoint.

By default, the endpoint is exposed to all adresses. You can optionally limit the CIDR blocks that can access the public endpoint using the PUBLIC.onlyFrom method. If you limit access to specific CIDR blocks, you must ensure that the CIDR blocks that you specify include the addresses that worker nodes and Fargate pods (if you use them) access the public endpoint from.

Stability: Experimental

PUBLIC_AND_PRIVATE

(experimental) The cluster endpoint is accessible from outside of your VPC.

public static EndpointAccess PUBLIC_AND_PRIVATE { get; }

Property Value

EndpointAccess

Remarks

Worker node traffic to the endpoint will stay within your VPC.

By default, the endpoint is exposed to all adresses. You can optionally limit the CIDR blocks that can access the public endpoint using the PUBLIC_AND_PRIVATE.onlyFrom method. If you limit access to specific CIDR blocks, you must ensure that the CIDR blocks that you specify include the addresses that worker nodes and Fargate pods (if you use them) access the public endpoint from.

Stability: Experimental

Methods

OnlyFrom(params string[])

(experimental) Restrict public access to specific CIDR blocks.

public virtual EndpointAccess OnlyFrom(params string[] cidr)

Parameters

cidr string[]

CIDR blocks.

Returns

EndpointAccess

Remarks

If public access is disabled, this method will result in an error.

Stability: Experimental