Skip to content

Add new annotation to block ip ranges #8821

New issue
New issue
Open
Open
Add new annotation to block ip ranges#8821
Labels
kind/featureCategorizes issue or PR as related to a new feature.lifecycle/rottenDenotes an issue or PR that has aged beyond stale and will be auto-closed.
@Jasstkn

Description

@Jasstkn
Jasstkn
opened on Apr 7, 2025

Hi!

I would like to suggest adding new annotation to be able block specific IP ranges using NSG, e.g. service.beta.kubernetes.io/azure-blocked-ip-ranges (pretty similar to the existing service.beta.kubernetes.io/azure-allowed-ip-ranges annotation but instead of "allow" - "deny" rules will be created.

Use case: I have the list of IP ranges to be blocked (they are not included in the Azure DDOS protection offering and Azure DDOS doesn't allow to supply a custom IP blocklist).

Is there any ongoing work or interest for such functionality? I am interested in contributing it if the idea is supported by the maintainers of the provider.

Metadata

Metadata

Assignees

No one assigned

    Labels

    kind/featureCategorizes issue or PR as related to a new feature.lifecycle/rottenDenotes an issue or PR that has aged beyond stale and will be auto-closed.

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions