Fortinet black logo

Online Help

Make Kubernetes API server accessible by Container Protection

Copy Link
Copy Doc ID f5cba41d-b79a-11ec-9fd1-fa163e15d75b:256174

Make Kubernetes API server accessible by Container Protection

  1. Log into AWS as an account user of the Kubernestes cluster.
  2. Go to Elastic Kubernetes Service (EKS) > Clusters, then click on the Cluster name that will be added to Container Protection.
  3. Click on Configuration > Networking tab, then click Manage networking.
  4. Select Public or Public and private, click Advanced Settings drop down menu, then click Add Source.
  5. In the CIDR block enter the Container Protection IP to gain access to the Kubernetes cluster API.
  6. Container Protection IP:

    United States: 54.191.73.255

    European Union: 34.248.196.209

    Enter the single IP as 54.191.73.255/32 with CIDR conversion in CIDR block . For more info please see CIDR to IPv4 Address Range Utility Tool.

  7. In Kubernetes CLI command line, use the following command to check the IP has access to the Kubernetes API:
  8. kubectl get nodes

    Note: If the IP is not within the Kubernetes API server endpoint, the CLI command will show as the following:

Make Kubernetes API server accessible by Container Protection

  1. Log into AWS as an account user of the Kubernestes cluster.
  2. Go to Elastic Kubernetes Service (EKS) > Clusters, then click on the Cluster name that will be added to Container Protection.
  3. Click on Configuration > Networking tab, then click Manage networking.
  4. Select Public or Public and private, click Advanced Settings drop down menu, then click Add Source.
  5. In the CIDR block enter the Container Protection IP to gain access to the Kubernetes cluster API.
  6. Container Protection IP:

    United States: 54.191.73.255

    European Union: 34.248.196.209

    Enter the single IP as 54.191.73.255/32 with CIDR conversion in CIDR block . For more info please see CIDR to IPv4 Address Range Utility Tool.

  7. In Kubernetes CLI command line, use the following command to check the IP has access to the Kubernetes API:
  8. kubectl get nodes

    Note: If the IP is not within the Kubernetes API server endpoint, the CLI command will show as the following: