Google Cloud Kubernetes Engine cluster should not be publicly accessible

gke

Set up the gke integration.

このページは日本語には対応しておりません。随時翻訳に取り組んでいます。翻訳に関してご質問やご意見ございましたら、お気軽にご連絡ください。

Description

The control plane of a GKE cluster should not be open to the internet. Limiting internet access significantly reduces the attack surface.

Remediation

Consider allow-listing specific IP ranges in the cluster configuration.

Alternatively, consider making the cluster private and accessing it from an internal network or through Identity-aware Proxy (IaP).