GKE nodes binding to a gateway

0
votes

I'm trying to route nodes managed by GKE to a gateway so each one of the nodes will eventually have the same IP. The reason is to allow, that static gateway IP only, to access my clients firewall.

I didn't find a solution on Google Kubernetes Engine, can anyone think of a way of doing that, with my GKE nodes?

This is an image that describe the desired solution

1
kubernetesgoogle-cloud-platformgoogle-kubernetes-enginegatewaygke-networking

1 Answers

1
votes

You could use Cloud NAT in GCP to allow GKE outbound connections through a single external IP address, therefore you can whitelist that public IP address in your Firewall device. You can check the next link for how to configure Cloud NAT in GKE