kubernetes
/
kops
mirror of https://github.com/kubernetes/kops.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Allow node -> master on tcp 10255 

This port serves the read-only kubelet api and is required by heapster
This commit is contained in:
Johannes Würbach 2017-02-23 00:06:46 +01:00
parent 072c81e394
commit 01bcf416e2
No known key found for this signature in database
GPG Key ID: 74DB0F4D956CCCE3
1 changed files with 5 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
pkg/model/firewall.go
View File

@ -18,11 +18,12 @@ package model
import (
"fmt"
"strconv"
"github.com/golang/glog"
"k8s.io/kops/pkg/apis/kops"
"k8s.io/kops/upup/pkg/fi"
"k8s.io/kops/upup/pkg/fi/cloudup/awstasks"
"strconv"
)
type Protocol int
@ -107,6 +108,9 @@ func (b *FirewallModelBuilder) applyNodeToMasterAllowSpecificPorts(c *fi.ModelBu
// allow cadvisor
tcpPorts = append(tcpPorts, 4194)
// kubelet read-only used by heapster
tcpPorts = append(tcpPorts, 10255)
if b.Cluster.Spec.Networking != nil {
if b.Cluster.Spec.Networking.Kopeio != nil {
// VXLAN over UDP