nsg-updater

command module

v0.0.0-...-6eec40a Latest Latest Go to latest Published: May 21, 2022 License: MIT Imports: 23 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

This is a hack project. It updates Azure NSGs to expose pods that are running with host networking

Watches for Pods with spec.hostNetwork=true and labels.updateNSG=true
Waits for a rate limit period as to not thrash NSGs in Azure
When an update is flagged, list eligible Pods and build up a list of desired NSG rules
Merge with the existing NSG rules
Update the NSG in Azure

--kubeconfig: path to a kubeconfig for cluster api access (defaults to ~/.kube/config)
--azureconfig: path to an azure cloud provider JSON config file (defaults to /etc/kubernetes/azure.json)

run it from inside an AKS cluster
- configure RBAC / ServiceAccount
- mount /etc/kubernetes/azure.json and pass to the --azureconfig param

There is no documentation for this package.