Categorygithub.com/matsnl/kubernetes-tproxycmdtproxy-podwatch
package
0.0.0-20190916221808-6b0e92c5ec9b
Repository: https://github.com/matsnl/kubernetes-tproxy.git
Documentation: pkg.go.dev
Overview
Versions
1
Dependencies
19
Dependents
0
Files
319 SLOC

# README

tproxy-podwatch

Kubernetes controller to watch for annoated pods and add/remove local node firewall rules.

Based on the workqueue controller example source.

Must be run with pod.spec.containers.securityContext.privileged: true and pod.spec.hostNetwork: true

Development workflow

Code is built and run in-cluster. Use the kubectl cp command to get new source into the pod and the kubectl exec command to go run the controller in the cluster.

Deploy the dev deployment:

kubectl create -f dev-deployment.yaml

Configure the dev pod:

pod=$(kubectl get pod --selector=run=tproxy-podwatch -o jsonpath='{.items..metadata.name}')
kubectl exec -it ${pod} -- mkdir -p /go/src/github.com/MatsNL/tproxy-podwatch/
kubectl cp main.go ${pod}:/go/src/github.com/MatsNL/tproxy-podwatch/main.go
kubectl exec -it ${pod} -- sh -c 'cd /go/src/github.com/MatsNL/tproxy-podwatch/ && go get ./...'

Run the controller:

./test.sh

Now, make changes to main.go and re-run ./test.sh

# Functions

No description provided by the author

# Structs

No description provided by the author