Customize CIDR for ingress Security Group in RHOCP 4 AWS IPI/UPI

Solution Unverified - Updated -

Issue

  • By default the security group for ingress contains the inbound rule allowing traffic from 0.0.0.0/0 even if the cluster is private or disconnected.
  • How to modify the inbound rule for ingress into the security group to allow traffic from a specific CIDR?
  • Is it possible to modify the CIDR for the security group rule related to ingress during installation?
  • Due to security concerns, an inbound rule for 0.0.0.0/0 for the ingress controller can't be allowed.

Environment

  • Red Hat OpenShift Container Platform (RHOCP)
    • 4
  • Amazon Web Services (AWS)

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content