AWS EKS private endpoint access

Bamba · December 5, 2021, 8:13am

hi Tailscale team,
I’m wondering how to overcome an issue I got regard accessing my Kubernetes(EKS) cluster running on AWS via the private endpoint, I have an EC2 instance(router for the VPC CIDR) that can route me to the EKS cluster, but the EKS endpoint DNS name is translated only within the VPC and not on my PC.
sound like a very common use case to me, but I could not find any idea.

thanks

DGentry · December 5, 2021, 3:51pm

Split DNS can be used to do this: DNS in Tailscale · Tailscale
For example if the domain name used within your EKS VPC is myeks.cluster, you’d add a DNS server for myeks.cluster pointing to the private VPC address of the EKS DNS server IP address.

There are examples of doing this for AWS names: Access AWS RDS privately using Tailscale · Tailscale
EKS would differ in the details, but the overall steps would be the same.

Bamba · December 5, 2021, 6:44pm

I see 2 challenges with this solution,

I don’t have control of the DNS zone my_eks.us-east-1.eks.amazonaws.com
what will happen if I have multiple VPCs with EKS in each of them?

thanks

Topic		Replies	Views
Help with Split DNS Conflict Setting up AWS RDS Tailscale About articles (troubleshooting, info)	2	1116	April 6, 2022
Best way to use TS & Route 53 for private hosted zones/custom dns & tld Linux	1	1351	April 26, 2023
AWS DNS Across Multiple VPCs SUPPORT QUESTIONS	0	295	December 30, 2022
Configure Split DNS for private AWS API Gateway Linux	1	750	October 12, 2022
Wildcard DNS for Local Access to Remote Kubernetes Cluster SUPPORT QUESTIONS	0	427	June 9, 2023

AWS EKS private endpoint access

Related Topics