firewall – kubernetes pod in in front on ingress

I have the problem that I want to have fail2ban in my cluster to prevent Dos or bruteforce attacks. I found a plugin for traefik, but It requires traefik to be connected to the SaaS platform of traefik, what I don’t want.
But I found a iptables pod on docker hub.
Can I have the this pod filtering traffik bevore it gets to the traefik ingress, so the incomming traffik flow looks like in this schemata:
enter image description here

My Idea is to connect the iptables pod to a fail2ban pod to block IPs with to many failed requests

Canadian Web HostingAvaHost.Net Web Hosting

Product of the Month September 2016

Source link

Leave a Comment

Your email address will not be published. Required fields are marked *