Open in app

Sign in

Write

Sign in

K8S MySQL Traefik IP Whitelist

Art Krisada
2 min readMar 2, 2023

From my old post, I created Traefik and MySQL in K8S. This post will use Traefik to route MySQL to outside world and allow IP Whitelist only.

Traefik

Argo CD, Traefik, Let’s Encrypt on GCP Part 2

From Part 1

krisadas.medium.com

MySQL

K8S MySQL Statefulsets

Short note on using MySQL on K8S with NFS as PVs. I did it on GCP. You can set up NFS Server from my link below.

krisadas.medium.com

My Repo

traefik · main · art Krisada / argocd-test · GitLab

GitLab.com

gitlab.com

From My Repo, You can see file 05-traefik.yml. Add entrypoint and port in traefik deployment.

05-traefik.yml

Add port in traefik-service. And add externalTrafficPolicy: Local (for display external IP in traefik)

https://gitlab.com/krisadas/argocd-test/-/blob/main/traefik/04-traefik-service.yml

Using Source IP

Applications running in a Kubernetes cluster find and communicate with each other, and the outside world, through the…

kubernetes.io

Add IngressRouteTCP with middleware IP Whitelist.

https://gitlab.com/krisadas/argocd-test/-/blob/main/mysql/ingress-route-tcp.yml

Add MiddlewareTCP IP Whitelist.

https://gitlab.com/krisadas/argocd-test/-/blob/main/mysql/ip-whitelist.yml

Change IP to your IP and try connect MySQL from outside. Hope this help.

Kubernetes
Traefik
MySQL
Ip Whitelist

--

--

Art Krisada

Written by Art Krisada

38 Followers

Never stop learning, because life never stop teaching.

Help

Status

About

Careers

Blog

Privacy

Terms

Text to speech

Teams