Skip to content

Admission controller to egress through a gateway pod

License

Notifications You must be signed in to change notification settings

zebrapurring/gateway-admision-controller

 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

gateway admision controller

Originally based on the k8s-at-home container template and the example for Kubewebhook, this admision webhook changes the default gateway and, optionally, the DNS of processed pods. It does so by adding an init container and a sidecar. The sidecar is used in case the IP of the gateway changes.

This is useful in order to send traffic to a VPN forwarder, traffic scanner, etc instead of using the default cluster egress.

The .github folder will get PRs from this template so you can apply the latest workflows.

Prereqs

You need to create the following secrets (not needed within the k8s-at-home org - there we use org-wide secrets):

  • GHCR_USERNAME # Needed to upload container to the Github Container Registry
  • GHCR_TOKEN # Needed to upload container to the Github Container Registry

How to build

  1. Build and test local
    make
  2. Build the container
    make docker-build

Check the [Makefile] for other build targets

How to run

It is expected to be used from within a Helm chart but the binary might also be run directly:

  1. Run
    make run
  2. Connect to :8080

For more options you might run make help

About

Admission controller to egress through a gateway pod

Resources

License

Code of conduct

Stars

Watchers

Forks

Packages

No packages published

Languages

  • Go 96.5%
  • Dockerfile 2.0%
  • Makefile 1.5%