AKS Virtual Node

Sourav Bhattacharya 60 Reputation points

HI All,

As one of the known limitation of AKS Virtual Node mentioned here is  “Using api server authorized ip ranges for AKS.

Does that mean is we set few PUBLIC IP only to access the AKS API server, then ACI pods won't be able to reach the AKS API server ?

Also does Virtual Node will work in private cluster ?



Azure Kubernetes Service (AKS)
Azure Kubernetes Service (AKS)
An Azure service that provides serverless Kubernetes, an integrated continuous integration and continuous delivery experience, and enterprise-grade security and governance.
1,662 questions
{count} votes

Accepted answer
  1. vipullag-MSFT 22,736 Reputation points Microsoft Employee

    Hello Sourav Bhattacharya

    Welcome to Microsoft Q&A Platform, thanks for posting your query here.

    Yes, that's correct. If you have set up a public IP range to access the AKS API server, then ACI pods won't be able to reach the AKS API server. This is because the virtual node subnet is delegated to Azure Container Instances (ACI), and the IP addresses used by the virtual nodes are not included in the authorized IP ranges for the AKS API server.

    Regarding your second question, virtual nodes can work in a private cluster. However, you need to ensure that the virtual network and subnet used by the virtual nodes are properly configured to allow communication between the virtual nodes and the AKS cluster.

    Hope that helps.

    1 person found this answer helpful.

0 additional answers

Sort by: Most helpful