Enable company's network ip range via AKS authorised range or network security group?

Tanul 1,251 Reputation points
2022-05-23T17:48:17.013+00:00

Team,

We need to allow only our organization's ip range to access our AKS environment. Should we use "AKS authorized ranges feature" or "network security group inbound security rule".

We want to disable our AKS environment's accessibility over public internet.

Please suggest. Thank you.

Regards,
Tanul

Azure Virtual Network
Azure Virtual Network
An Azure networking service that is used to provision private networks and optionally to connect to on-premises datacenters.
2,266 questions
Azure Kubernetes Service (AKS)
Azure Kubernetes Service (AKS)
An Azure service that provides serverless Kubernetes, an integrated continuous integration and continuous delivery experience, and enterprise-grade security and governance.
1,961 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. risolis 8,701 Reputation points
    2022-05-23T18:40:46.233+00:00

    Hello @Tanul

    Thank you for your post.

    I would like to know more details about your AKS environment if it is possible.

    -Do you have CNI plug-in or Basic networking on your AKS cluster?
    -Do you have any Azure FW/Network virtual appliance on your Vnet?
    -Are you using the default routing or UDR routing?
    -Do you have any nginx or load balancer hosted on your cluster?

    Looking forward to your feedback,

    Please "Accept the answer" if the information helped you. This will help us and others in the community as well.