You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: modules/private-clusters-setting-api-private.adoc
+44-43Lines changed: 44 additions & 43 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -31,8 +31,51 @@ you can reconfigure the API server to use only the private zone.
31
31
32
32
.Procedure
33
33
34
+
. In the web portal or console for your cloud provider, take the following actions:
35
+
36
+
.. Locate and delete the appropriate load balancer component:
37
+
ifndef::cpmso-using-azure[]
38
+
*** {aws-short} clusters: Delete the external load balancer. The API DNS entry in the private zone already points to the internal load balancer, which uses an identical configuration, so you do not need to modify the internal load balancer.
39
+
endif::cpmso-using-azure[]
40
+
ifndef::cpmso-using-aws[]
41
+
***{azure-short}: Delete the following resources:
42
+
** The `api-v4` rule for the public load balancer.
43
+
** The `frontendIPConfiguration` parameter that is associated with the `api-v4` rule for the public load balancer.
44
+
** The public IP that is specified in the `frontendIPConfiguration` parameter.
45
+
46
+
.. {azure-short} clusters: Configure the Ingress Controller endpoint publishing scope to `Internal`.
47
+
For more information, see "Configuring the Ingress Controller endpoint publishing scope to Internal".
. Remove the external load balancers by deleting the following indicated lines in the control plane machine set custom resource:
59
+
+
60
+
[source,yaml]
61
+
----
62
+
# ...
63
+
providerSpec:
64
+
value:
65
+
# ...
66
+
loadBalancers:
67
+
- name: lk4pj-ext # <1>
68
+
type: network # <2>
69
+
- name: lk4pj-int
70
+
type: network
71
+
# ...
72
+
----
73
+
<1> Delete the `name` value for the external load balancer, which ends in `-ext`.
74
+
<2> Delete the `type` value for the external load balancer.
75
+
endif::cpmso-using-aws[]
76
+
34
77
ifdef::post-install[]
35
-
. AWS clusters: Remove the external load balancers:
78
+
. {aws-short} clusters: Remove the external load balancers:
36
79
+
37
80
[IMPORTANT]
38
81
====
@@ -113,48 +156,6 @@ providerSpec:
113
156
.... Repeat this process for each of the control plane machines.
114
157
endif::post-install[]
115
158
116
-
. In the web portal or console for your cloud provider, take the following actions:
117
-
118
-
.. Locate and delete the appropriate load balancer component:
119
-
ifndef::cpmso-using-azure[]
120
-
*** For AWS, delete the external load balancer. The API DNS entry in the private zone already points to the internal load balancer, which uses an identical configuration, so you do not need to modify the internal load balancer.
121
-
endif::cpmso-using-azure[]
122
-
ifndef::cpmso-using-aws[]
123
-
*** For Azure, delete the `api-internal-v4` rule for the public load balancer.
124
-
125
-
.. For Azure, configure the Ingress Controller endpoint publishing scope to `Internal`.
126
-
For more information, see "Configuring the Ingress Controller endpoint publishing scope to Internal".
127
-
128
-
.. For the Azure public load balancer, if you configure the Ingress Controller endpoint publishing scope to `Internal` and there are no existing inbound rules in the public load balancer, you must create an outbound rule explicitly to provide outbound traffic for the backend address pool.
129
-
For more information, see the Microsoft Azure documentation about adding outbound rules.
0 commit comments