Browse Source

Add the option to create a DNS record for bastion deployed to Azure (#3675)

This is rather convenient if you want to configure exceptions on a
company firewall.
pull/3683/head
Thomas Nys 6 years ago
committed by Antoine Legrand
parent
commit
fb9155c450
2 changed files with 10 additions and 1 deletions
  1. 4
      contrib/azurerm/group_vars/all
  2. 7
      contrib/azurerm/roles/generate-templates/templates/bastion.json

4
contrib/azurerm/group_vars/all

@ -7,6 +7,10 @@ cluster_name: example
# node that can be used to access the masters and minions # node that can be used to access the masters and minions
use_bastion: false use_bastion: false
# Set this to a prefered name that will be used as the first part of the dns name for your bastotion host. For example: k8s-bastion.<azureregion>.cloudapp.azure.com.
# This is convenient when exceptions have to be configured on a firewall to allow ssh to the given bastion host.
# bastion_domain_prefix: k8s-bastion
number_of_k8s_masters: 3 number_of_k8s_masters: 3
number_of_k8s_nodes: 3 number_of_k8s_nodes: 3

7
contrib/azurerm/roles/generate-templates/templates/bastion.json

@ -15,7 +15,12 @@
"name": "{{bastionIPAddressName}}", "name": "{{bastionIPAddressName}}",
"location": "[resourceGroup().location]", "location": "[resourceGroup().location]",
"properties": { "properties": {
"publicIPAllocationMethod": "Static"
"publicIPAllocationMethod": "Static",
"dnsSettings": {
{% if bastion_domain_prefix %}
"domainNameLabel": "{{ bastion_domain_prefix }}"
{% endif %}
}
} }
}, },
{ {

Loading…
Cancel
Save