セキュリティ設定(Secure by Default)とは?
IKS1.30/ROKS4.15以降の新しい IBM Cloud Kubernetes Service VPC クラスターをプロビジョンするときに、クラスターが機能するために必要なトラフィックのみが許可され、その他のアクセスはすべてブロックされるようになった。PODから外部へ、外部からPODへの通信が必要な場合、明示的にセキュリティグループの変更が必要
IKS:Secure by Default Cluster VPC ネットワーキングについて
ROKS:Secure by Default Cluster VPC ネットワーキングについて
対象
- 新規で作成したIKS1.30以降
- 新規で作成したROKS4.15以降
非対象
- IKS1.29以前からアップデートし、1.30にした場合
- ROKS4.14以前からアップデートし、4.15にした場合
デフォルトで許可設定がされている通信
[IKS]
管理対象セキュリティー・グループ
[ROKS]
管理対象セキュリティー・グループ
IKSのセキュリティグループ設定を確認してみる
デフォルトで作成されるSGの名前は以下の通り
- Worker security group (kube-)
- Master VPE gateway security group (kube-vpegw-)
- 共有VPEゲートウェイセキュリティグループ(kube-vpegw-)
- ロードバランサーサービスのセキュリティグループ (kube-lbaas-)
クラスタの管理画面から、ネットワーキングより確認できる
セキュリティーグループの名前をクリックすると、より詳細なルールを確認可能
Secure by Defautの動作確認
デフォルトのセキュリティグループでは、アウトバウンドでのHTTPやHTTPSが設定されていない。
そのため、PODからインターネット上のシステムとは通信できない。
curl www.google.co.jp でhttp通信を実施するが、応答が返ってこない
% kubectl run -it busybox-cr --restart=Never --rm --image=jp.icr.io/khoshina-cr/busybox-cr sh
If you don't see a command prompt, try pressing enter.
/ # curl www.google.co.jp
セキュリティグループのアウトバウンドへHTTPを許可する
再度、curlを実行すると通信ができたことが確認できる
/ # curl www.google.co.jp
<!doctype html><html itemscope="" itemtype="http://schema.org/WebPage" lang="en"><head><meta content="Search the world's information, including webpages, images, videos and more. Google has many special features to help you find exactly what you're looking for." name="description"><meta content="noodp, " name="robots"><meta content="text/html; charset=UTF-8" http-equiv="Content-Type"><meta content="/logos/doodles/2024/paris-games-artistic-gymnastics-day-2-6753651837110526-law.gif" itemprop="image"><meta content="Paris Games - Artistic Gymnastics" property="twitter:title"><meta content="Paris Games Artistic Gymnastics! #GoogleDoodle" property="twitter:description"><meta content="Paris Games Artistic Gymnastics! #GoogleDoodle" property="og:description"><meta content="summary_large_image" property="twitter:card"><meta content="@GoogleDoodles" property="twitter:site"><meta content="https://www.google.com/logos/doodles/2024/paris-games-artistic-gymnastics-day-2-6753651837110526-2xa.gif" property="twitter:image"><meta content="https://www.google.com/logos/doodles/2024/paris-games-artistic-gymnastics-day-2-6753651837110526-2xa.gif" property="og:image"><meta content="1000" property="og:image:width"><meta content="400" property="og:image:height"><meta content="https://www.google.com/logos/doodles/2024/paris-games-artistic-gymnastics-day-2-6753651837110526-2xa.gif" property="og:url"><meta content="video.other" property="og:type"><title>Google</title><script nonce="D9yjgmx4EwbBy1FmP0ZW8g">(function(){var _g={kEI:'VYuoZtmXA-G90PEP2viCmAI',kEXPI:'0,2504525,1195752,794,310,5,538659,2872,2891,8348,3406,31274,64288,60057,85641,2,16395,342,23024,6700,41945,57737,2,2,1,10956,13670,2006,8155,23350,22436,9779,12415,50243,36746,3801,2412,30219,3030,15816,357,1447,7734,26,18072,576,9821,10853,1635,29276,27083,5203198,9478,996,5991434,552,2840130,325,26707189,91859,1182080,16673,43886,3,318,4,1281,3,2124363,23029351,8163,3394,1242,16436,6429,23518,6717,47381,11640,10982,885,14280,8181,154,5780,8939,4318,2,9654,20583,10085,8926,2660,3008,426,3319,155,1,1,1,1756,2,723,8970,4534,1004,6731,6596,4,2540,4599,206,122,1543,1674,4,3004,4611,2,12,3311,38,1982,1,1,5,9711,409,518,5719,7304,687,2748,3,178,817,2927,1122,3,1,1770,1244,2695,1751,2724,974,5112,216,2704,2865,682,452,212,5670,172,339,916,2117,2,3,4484,49,1440,370,67,278,7,12,622,124,4,1248,1210,6,783,3,1,834,1878,1605,249,188,106,3207,1339,126,1,6,2249,367,3,194,190,4,724,799,175,3,3,529,1858,2,906,1,1960,2129,1987,872,22,1985,720,551,3606,7,2854,1141,111,1227,70,1,572,463,1533,429,125,13,615,44,2392,448,186,493,25,7,5,1518,703,1459,714,2,243,28,4,93,927,5,3,1250,67,752,711,60,441,621,166,30,98,92,56,121,395,1,207,1,511,242,2,792,2,265,213,1,250,268,4,859,512,5015,47,3,1054,1118,142,455,132,1,8,1,1,4,1,27,1122,160,1689,136,216,369,1000,2,1,6,380,78,108,91,483,2,24,459,1195,194,67,1285,333,206,240,3,38,50,15,86,93,719,377,83,133,866,84,642,1,897,129,2,2026,21151303,359918,5720,3,14475,3,7053,343,769,47,608,3539',kBL:'cvmk',kOPI:89978449};(function(){var a;((a=window.google)==null?0:a.stvsc)?google.kEI=_g.kEI:window.google=_g;}).call(this);})();(function(){google.sn='webhp';google.kHL='en';})();(function(){
var h=this||self;function l(){return window.google!==void 0&&window.google.kOPI!==void 0&&window.google.kOPI!==0?window.google.kOPI:null};var m,n=[];function p(a){for(var b;a&&(!a.getAttribute||!(b=a.getAttribute("eid")));)a=a.parentNode;return b||m}function q(a){for(var b=null;a&&(!a.getAttribute||!(b=a.getAttribute("leid")));)a=a.parentNode;return b}function r(a){/^http:/i.test(a)&&window.location.protocol==="https:"&&(google.ml&&google.ml(Error("a"),!1,{src:a,glmm:1}),a="");return a}
function t(a,b,c,d,k){var e="";b.search("&ei=")===-1&&(e="&ei="+p(d),b.search("&lei=")===-1&&(d=q(d))&&(e+="&lei="+d));d="";var g=b.search("&cshid=")===-1&&a!=="slh",f=[];f.push(["zx",Date.now().toString()]);h._cshid&&g&&f.push(["cshid",h._cshid]);c=c();c!=null&&f.push(["opi",c.toString()]);for(c=0;c<f.length;c++){if(c===0||c>0)d+="&";d+=f[c][0]+"="+f[c][1]}return"/"+(k||"gen_204")+"?atyp=i&ct="+String(a)+"&cad="+(b+e+d)};m=google.kEI;google.getEI=p;google.getLEI=q;google.ml=function(){return null};google.log=function(a,b,c,d,k,e){e=e===void 0?l:e;c||(c=t(a,b,e,d,k));if(c=r(c)){a=new Image;var g=n.length;n[g]=a;a.onerror=a.onload=a.onabort=function(){delete n[g]};a.src=c}};google.logUrl=function(a,b){b=b===void 0?l:b;return t("",a,b)};}).call(this);(function(){google.y={};google.sy=[];var d;(d=google).x||(d.x=function(a,b){if(a)var c=a.id;else{do c=Math.random();while(google.y[c])}google.y[c]=[a,b];return!1});var e;(e=google).sx||(e.sx=function(a){google.sy.push(a)});google.lm=[];var f;(f=google).plm||(f.plm=function(a){google.lm.push.apply(google.lm,a)});google.lq=[];var g;(g=google).load||(g.load=function(a,b,c){google.lq.push([[a],b,c])});var h;(h=google).loadAll||(h.loadAll=function(a,b){google.lq.push([a,b])});google.bx=!1;var k;(k=google).lx||(k.lx=function(){});var l=[],m;(m=google).fce||(m.fce=function(a,b,c,n){l.push([a,b,c,n])});google.qce=l;}).call(this);google.f={};(function(){
document.documentElement.addEventListener("submit",function(b){var a;if(a=b.target){var c=a.getAttribute("data-submitfalse");a=c==="1"||c==="q"&&!a.elements.q.value?!0:!1}else a=!1;a&&(b.preventDefault(),b.stopPropagation())},!0);document.documentElement.addEventListener("click",function(b){var a;a:{for(a=b.target;a&&a!==document.documentElement;a=a.parentElement)if(a.tagName==="A"){a=a.getAttribute("data-nohref")==="1";break a}a=!1}a&&b.preventDefault()},!0);}).call(this);</script><style>#gbar,#guser{font-size:13px;padding-top:1px !important;}#gbar{height:22px}#guser{padding-bottom:7px !important;text-align:right}.gbh,.gbd{border-top:1px solid #c9d7f1;font-size:1px}.gbh{height:0;position:absolute;top:24px;width:100%}@media all{.gb1{height:22px;margin-right:.5em;vertical-align:top}#gbar{float:left}}a.gb1,a.gb4{text-decoration:underline !important}a.gb1,a.gb4{color:#00c !important}.gbi .gb4{color:#dd8e27 !important}.gbf .gb4{color:#900 !important}
</style><style>body,td,a,p,.h{font-family:arial,sans-serif}body{margin:0;overflow-y:scroll}#gog{padding:3px 8px 0}td{line-height:.8em}.gac_m td{line-height:17px}form{margin-bottom:20px}.h{color:#1967d2}em{font-weight:bold;font-style:normal}.lst{height:25px;width:496px}.gsfi,.lst{font:18px arial,sans-serif}.gsfs{font:17px arial,sans-serif}.ds{display:inline-box;display:inline-block;margin:3px 0 4px;margin-left:4px}input{font-family:inherit}body{background:#fff;color:#000}a{color:#681da8;text-decoration:none}a:hover,a:active{text-decoration:underline}.fl a{color:#1967d2}a:visited{color:#681da8}.sblc{padding-top:5px}.sblc a{display:block;margin:2px 0;margin-left:13px;font-size:11px}.lsbb{background:#f8f9fa;border:solid 1px;border-color:#dadce0 #70757a #70757a #dadce0;height:30px}.lsbb{display:block}#WqQANb a{display:inline-block;margin:0 12px}.lsb{background:url(/images/nav_logo229.png) 0 -261px repeat-x;color:#000;border:none;cursor:pointer;height:30px;margin:0;outline:0;font:15px arial,sans-serif;vertical-align:top}.lsb:active{background:#dadce0}.lst:focus{outline:none}</style><script nonce="D9yjgmx4EwbBy1FmP0ZW8g">(function(){window.google.erd={jsr:1,bv:2052,de:true};
var g=this||self;var k,l=(k=g.mei)!=null?k:1,n,p=(n=g.sdo)!=null?n:!0,q=0,r,t=google.erd,v=t.jsr;google.ml=function(a,b,d,m,e){e=e===void 0?2:e;b&&(r=a&&a.message);d===void 0&&(d={});d.cad="ple_"+google.ple+".aple_"+google.aple;if(google.dl)return google.dl(a,e,d,!0),null;b=d;if(v<0){window.console&&console.error(a,b);if(v===-2)throw a;b=!1}else b=!a||!a.message||a.message==="Error loading script"||q>=l&&!m?!1:!0;if(!b)return null;q++;d=d||{};b=encodeURIComponent;var c="/gen_204?atyp=i&ei="+b(google.kEI);google.kEXPI&&(c+="&jexpid="+b(google.kEXPI));c+="&srcpg="+b(google.sn)+"&jsr="+b(t.jsr)+
"&bver="+b(t.bv);t.dpf&&(c+="&dpf="+b(t.dpf));var f=a.lineNumber;f!==void 0&&(c+="&line="+f);var h=a.fileName;h&&(h.indexOf("-extension:/")>0&&(e=3),c+="&script="+b(h),f&&h===window.location.href&&(f=document.documentElement.outerHTML.split("\n")[f],c+="&cad="+b(f?f.substring(0,300):"No script found.")));google.ple&&google.ple===1&&(e=2);c+="&jsel="+e;for(var u in d)c+="&",c+=b(u),c+="=",c+=b(d[u]);c=c+"&emsg="+b(a.name+": "+a.message);c=c+"&jsst="+b(a.stack||"N/A");c.length>=12288&&(c=c.substr(0,12288));a=c;m||google.log(0,"",a);return a};window.onerror=function(a,b,d,m,e){r!==a&&(a=e instanceof Error?e:Error(a),d===void 0||"lineNumber"in a||(a.lineNumber=d),b===void 0||"fileName"in a||(a.fileName=b),google.ml(a,!1,void 0,!1,a.name==="SyntaxError"||a.message.substring(0,11)==="SyntaxError"||a.message.indexOf("Script error")!==-1?3:0));r=null;p&&q>=l&&(window.onerror=null)};})();</script></head><body bgcolor="#fff"><script nonce="D9yjgmx4EwbBy1FmP0ZW8g">(function(){var src='/images/nav_logo229.png';var iesg=false;document.body.onload = function(){window.n && window.n();if (document.images){new Image().src=src;}
if (!iesg){document.f&&document.f.q.focus();document.gbqf&&document.gbqf.q.focus();}
}
})();</script><div id="mngb"><div id=gbar><nobr><b class=gb1>Search</b> <a class=gb1 href="https://www.google.co.jp/imghp?hl=en&tab=wi">Images</a> <a class=gb1 href="http://maps.google.com/maps?hl=en&tab=wl">Maps</a> <a class=gb1 href="https://play.google.com/?hl=en&tab=w8">Play</a> <a class=gb1 href="https://www.youtube.com/?tab=w1">YouTube</a> <a class=gb1 href="https://news.google.com/?tab=wn">News</a> <a class=gb1 href="https://mail.google.com/mail/?tab=wm">Gmail</a> <a class=gb1 href="https://drive.google.com/?tab=wo">Drive</a> <a class=gb1 style="text-decoration:none" href="https://www.google.com/intl/en/about/products?tab=wh"><u>More</u> »</a></nobr></div><div id=guser width=100%><nobr><span id=gbn class=gbi></span><span id=gbf class=gbf></span><span id=gbe></span><a href="http://www.google.com/history/optout?hl=en" class=gb4>Web History</a> | <a href="/preferences?hl=en" class=gb4>Settings</a> | <a target=_top id=gb_70 href="https://accounts.google.com/ServiceLogin?hl=en&passive=true&continue=http://www.google.co.jp/&ec=GAZAAQ" class=gb4>Sign in</a></nobr></div><div class=gbh style=left:0></div><div class=gbh style=right:0></div></div><center><br clear="all" id="lgpd"><div id="XjhHGf"><a href="/search?sca_esv=fa70f7cd442e3964&ie=UTF-8&q=artistic+gymnastics+olympics&oi=ddle&ct=335645538&hl=en&sa=X&ved=0ahUKEwiZlqrAlM6HAxXhHjQIHVq8ACMQPQgD"><img alt="Paris Games - Artistic Gymnastics" border="0" height="200" src="/logos/doodles/2024/paris-games-artistic-gymnastics-day-2-6753651837110526-law.gif" title="Paris Games - Artistic Gymnastics" width="500" id="hplogo"><br></a><br></div><form action="/search" name="f"><table cellpadding="0" cellspacing="0"><tr valign="top"><td width="25%"> </td><td align="center" nowrap=""><input name="ie" value="Shift_JIS" type="hidden"><input value="en" name="hl" type="hidden"><input name="source" type="hidden" value="hp"><input name="biw" type="hidden"><input name="bih" type="hidden"><div class="ds" style="height:32px;margin:4px 0"><input class="lst" style="margin:0;padding:5px 8px 0 6px;vertical-align:top;color:#000" autocomplete="off" value="" title="Google Search" maxlength="2048" name="q" size="57"></div><br style="line-height:0"><span class="ds"><span class="lsbb"><input class="lsb" value="Google Search" name="btnG" type="submit"></span></span><span class="ds"><span class="lsbb"><input class="lsb" id="tsuid_1" value="I'm Feeling Lucky" name="btnI" type="submit"><script nonce="D9yjgmx4EwbBy1FmP0ZW8g">(function(){var id='tsuid_1';document.getElementById(id).onclick = function(){if (this.form.q.value){this.checked = 1;if (this.form.iflsig)this.form.iflsig.disabled = false;}
else top.location='/doodles/';};})();</script><input value="AL9hbdgAAAAAZqiZZRFWzKYSNtKOKrelVHfJSuVG3rYc" name="iflsig" type="hidden"></span></span></td><td class="fl sblc" align="left" nowrap="" width="25%"><a href="/advanced_search?hl=en&authuser=0">Advanced search</a></td></tr></table><input id="gbv" name="gbv" type="hidden" value="1"><script nonce="D9yjgmx4EwbBy1FmP0ZW8g">(function(){var a,b="1";if(document&&document.getElementById)if(typeof XMLHttpRequest!="undefined")b="2";else if(typeof ActiveXObject!="undefined"){var c,d,e=["MSXML2.XMLHTTP.6.0","MSXML2.XMLHTTP.3.0","MSXML2.XMLHTTP","Microsoft.XMLHTTP"];for(c=0;d=e[c++];)try{new ActiveXObject(d),b="2"}catch(h){}}a=b;if(a=="2"&&location.search.indexOf("&gbv=2")==-1){var f=google.gbvu,g=document.getElementById("gbv");g&&(g.value=a);f&&window.setTimeout(function(){location.href=f},0)};}).call(this);</script></form><div style="font-size:83%;min-height:3.5em"><br><div id="gws-output-pages-elements-homepage_additional_languages__als"><style>#gws-output-pages-elements-homepage_additional_languages__als{font-size:small;margin-bottom:24px}#SIvCob{color:#474747;display:inline-block;line-height:28px;}#SIvCob a{padding:0 3px;}.H6sW5{display:inline-block;margin:0 2px;white-space:nowrap}.z4hgWe{display:inline-block;margin:0 2px}</style><div id="SIvCob">Google offered in: <a href="http://www.google.co.jp/setprefs?sig=0_89VahUM9-FyrnJCsGw8QTdrjEbs%3D&hl=ja&source=homepage&sa=X&ved=0ahUKEwiZlqrAlM6HAxXhHjQIHVq8ACMQ2ZgBCAY">��{��</a> </div></div></div><span id="footer"><div style="font-size:10pt"><div style="margin:19px auto;text-align:center" id="WqQANb"><a href="/intl/en/ads/">Advertising</a><a href="/services/">Business Solutions</a><a href="/intl/en/about.html">About Google</a><a href="http://www.google.co.jp/setprefdomain?prefdom=US&sig=K_nlYtBH6bVTwRttuyMQoI88axsLs%3D" id="fehl">Google.com</a></div></div><p style="font-size:8pt;color:#70757a">© 2024 - <a href="/intl/en/policies/privacy/">Privacy</a> - <a href="/intl/en/policies/terms/">Terms</a></p></span></center><script nonce="D9yjgmx4EwbBy1FmP0ZW8g">(function(){window.google.cdo={height:757,width:1440};(function(){var a=window.innerWidth,b=window.innerHeight;if(!a||!b){var c=window.document,d=c.compatMode=="CSS1Compat"?c.documentElement:c.body;a=d.clientWidth;b=d.clientHeight}
if(a&&b&&(a!=google.cdo.width||b!=google.cdo.height)){var e=google,f=e.log,g="/client_204?&atyp=i&biw="+a+"&bih="+b+"&ei="+google.kEI,h="",k=[],l=window.google!==void 0&&window.google.kOPI!==void 0&&window.google.kOPI!==0?window.google.kOPI:null;l!=null&&k.push(["opi",l.toString()]);for(var m=0;m<k.length;m++){if(m===0||m>0)h+="&";h+=k[m][0]+"="+k[m][1]}f.call(e,"","",g+h)};}).call(this);})();</script> <script nonce="D9yjgmx4EwbBy1FmP0ZW8g">(function(){google.xjs={basecomb:'/xjs/_/js/k\x3dxjs.hp.en.ZVIiGGLVy-E.O/ck\x3dxjs.hp.2KH4V20d5r4.L.X.O/am\x3dAQAAEAAAAAAAAAAAAAAAAAAAAAAABAAAAAAAAAAABsABAACAAIBAAAAAAAAeAAAABAAACEAIAIABIAAAHIjvCAAEwCIAALw/d\x3d1/ed\x3d1/dg\x3d0/ujg\x3d1/rs\x3dACT90oGJK_0NkrZAB77et0Hl1vL8fMvEOw',basecss:'/xjs/_/ss/k\x3dxjs.hp.2KH4V20d5r4.L.X.O/am\x3dAQAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAAIBAAAAAAAAAAAAABAAACEAIAIABIA/rs\x3dACT90oH5KjWlmueBN5fRpQBfWLl0qjEI0w',basejs:'/xjs/_/js/k\x3dxjs.hp.en.ZVIiGGLVy-E.O/am\x3dAAAAAAAAAAAAAAAAAAAAAAAAAAAABAAAAAAAAAAABsABAAAAAAAAAAAAAAAeAAAAAAAAAAAAAAAAAAAAHIjvCAAEwCIAALw/dg\x3d0/rs\x3dACT90oHWix7p9poeFtREbVgKwCvDaW52xQ',excm:[]};})();</script> <link href="/xjs/_/ss/k=xjs.hp.2KH4V20d5r4.L.X.O/am=AQAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAAIBAAAAAAAAAAAAABAAACEAIAIABIA/d=1/ed=1/rs=ACT90oH5KjWlmueBN5fRpQBfWLl0qjEI0w/m=sb_he,d" rel="stylesheet" nonce="D9yjgmx4EwbBy1FmP0ZW8g"> <script nonce="D9yjgmx4EwbBy1FmP0ZW8g">(function(){var u='/xjs/_/js/k\x3dxjs.hp.en.ZVIiGGLVy-E.O/am\x3dAAAAAAAAAAAAAAAAAAAAAAAAAAAABAAAAAAAAAAABsABAAAAAAAAAAAAAAAeAAAAAAAAAAAAAAAAAAAAHIjvCAAEwCIAALw/d\x3d1/ed\x3d1/dg\x3d3/rs\x3dACT90oHWix7p9poeFtREbVgKwCvDaW52xQ/m\x3dsb_he,d';var st=1;var amd=1000;var mmd=0;var pod=true;
var f=this||self,g=function(a){return a};var h;var k=function(a){this.g=a};k.prototype.toString=function(){return this.g+""};var l=function(a){return a instanceof k&&a.constructor===k?a.g:"type_error:TrustedResourceUrl"},m={};
var n=/^\s*(?!javascript:)(?:[\w+.-]+:|[^:/?#]*(?:[/?#]|$))/i;var p="alternate author bookmark canonical cite help icon license modulepreload next prefetch dns-prefetch prerender preconnect preload prev search subresource".split(" ");function q(a,b){a.src=l(b);var c,d;(c=(b=(d=(c=(a.ownerDocument&&a.ownerDocument.defaultView||window).document).querySelector)==null?void 0:d.call(c,"script[nonce]"))?b.nonce||b.getAttribute("nonce")||"":"")&&a.setAttribute("nonce",c)};var r=function(a){var b=document;a=String(a);b.contentType==="application/xhtml+xml"&&(a=a.toLowerCase());return b.createElement(a)};function t(a){a=a===null?"null":a===void 0?"undefined":a;if(h===void 0){var b=null;var c=f.trustedTypes;if(c&&c.createPolicy){try{b=c.createPolicy("goog#html",{createHTML:g,createScript:g,createScriptURL:g})}catch(d){f.console&&f.console.error(d.message)}h=b}else h=b}a=(b=h)?b.createScriptURL(a):a;return new k(a,m)};google.ps===void 0&&(google.ps=[]);function w(){var a=u,b=function(){};google.lx=google.stvsc?b:function(){x(a);google.lx=b};google.bx||google.lx()}function y(a,b){b&&q(a,t(b));var c=a.onload;a.onload=function(d){c&&c(d);google.ps=google.ps.filter(function(e){return a!==e})};google.ps.push(a);document.body.appendChild(a)}google.as=y;function x(a){google.timers&&google.timers.load&&google.tick&&google.tick("load","xjsls");var b=r("SCRIPT");b.onerror=function(){google.ple=1};b.onload=function(){google.ple=0};google.xjsus=void 0;y(b,a);google.aple=-1;google.dp=!0}
function z(){var a=[u];if(!google.dp){for(var b=0;b<a.length;b++){var c=r("LINK"),d=c,e=t(a[b]);if(e instanceof k)d.href=l(e).toString(),d.rel="preload";else{if(p.indexOf("preload")===-1)throw Error("a`preload");e=n.test(e)?e:void 0;e!==void 0&&(d.href=e,d.rel="preload")}c.setAttribute("as","script");document.body.appendChild(c)}google.dp=!0}};function A(a){var b=a.getAttribute("jscontroller");return(b==="UBXHI"||b==="R3fhkb"||b==="TSZEqd")&&a.hasAttribute("data-src")}function B(){for(var a=document.getElementsByTagName("img"),b=0,c=a.length;b<c;b++){var d=a[b];if(d.hasAttribute("data-lzy_")&&Number(d.getAttribute("data-atf"))&1&&!A(d))return!0}return!1}for(var C=document.getElementsByTagName("img"),D=0,E=C.length;D<E;++D){var F=C[D];Number(F.getAttribute("data-atf"))&1&&A(F)&&(F.src=F.getAttribute("data-src"))};var G,H,I,J,K;function L(){google.xjsu=u;f._F_jsUrl=u;J=function(){w()};G=!1;H=(st===1||st===3)&&!!google.caft&&!B();I=(st===2||st===3)&&!!google.rairicb&&!B();K=pod}function M(){G||H||I||(J(),G=!0)}setTimeout(function(){google&&google.tick&&google.timers&&google.timers.load&&google.tick("load","xjspls");L();if(H||I){if(H){var a=function(){H=!1;M()};google.caft(a);window.setTimeout(a,amd)}I&&(a=function(){I=!1;M()},(0,google.rairicb)(a),window.setTimeout(a,mmd));K&&(G||z())}else J()},0);})();window._ = window._ || {};window._DumpException = _._DumpException = function(e){throw e;};window._s = window._s || {};_s._DumpException = _._DumpException;window._qs = window._qs || {};_qs._DumpException = _._DumpException;(function(){var t=[268435457,0,0,0,0,1310720,0,268518400,16892006,131080,1032,125829697,67108864,2097152,402653316,2576,149915676,185077760,197132290];window._F_toggles = window._xjs_toggles = t;})();window._F_installCss = window._F_installCss || function(css){};(function(){google.jl={bfl:0,dw:false,ine:false,ubm:false,uwp:true,vs:false};})();(function(){var pmc='{\x22d\x22:{},\x22sb_he\x22:{\x22agen\x22:false,\x22cgen\x22:false,\x22client\x22:\x22heirloom-hp\x22,\x22dh\x22:true,\x22ds\x22:\x22\x22,\x22fl\x22:true,\x22host\x22:\x22google.co.jp\x22,\x22jsonp\x22:true,\x22msgs\x22:{\x22cibl\x22:\x22Clear Search\x22,\x22dym\x22:\x22Did you mean:\x22,\x22lcky\x22:\x22I\\u0026#39;m Feeling Lucky\x22,\x22lml\x22:\x22Learn more\x22,\x22psrc\x22:\x22This search was removed from your \\u003Ca href\x3d\\\x22/history\\\x22\\u003EWeb History\\u003C/a\\u003E\x22,\x22psrl\x22:\x22Remove\x22,\x22sbit\x22:\x22Search by image\x22,\x22srch\x22:\x22Google Search\x22},\x22ovr\x22:{},\x22pq\x22:\x22\x22,\x22rfs\x22:[],\x22stok\x22:\x22GTkG6S_tW3d77BxK6BhMLzM0P3M\x22}}';google.pmc=JSON.parse(pmc);})();(function(){var b=function(a){var c=0;return function(){return c<a.length?{done:!1,value:a[c++]}:{done:!0}}};
var e=this||self;var g,h;a:{for(var k=["CLOSURE_FLAGS"],l=e,n=0;n<k.length;n++)if(l=l[k[n]],l==null){h=null;break a}h=l}var p=h&&h[610401301];g=p!=null?p:!1;var q,r=e.navigator;q=r?r.userAgentData||null:null;function t(a){return g?q?q.brands.some(function(c){return(c=c.brand)&&c.indexOf(a)!=-1}):!1:!1}function u(a){var c;a:{if(c=e.navigator)if(c=c.userAgent)break a;c=""}return c.indexOf(a)!=-1};function v(){return g?!!q&&q.brands.length>0:!1}function w(){return u("Safari")&&!(x()||(v()?0:u("Coast"))||(v()?0:u("Opera"))||(v()?0:u("Edge"))||(v()?t("Microsoft Edge"):u("Edg/"))||(v()?t("Opera"):u("OPR"))||u("Firefox")||u("FxiOS")||u("Silk")||u("Android"))}function x(){return v()?t("Chromium"):(u("Chrome")||u("CriOS"))&&!(v()?0:u("Edge"))||u("Silk")}function y(){return u("Android")&&!(x()||u("Firefox")||u("FxiOS")||(v()?0:u("Opera"))||u("Silk"))};var z=v()?!1:u("Trident")||u("MSIE");y();x();w();var A=!z&&!w(),D=function(a){if(/-[a-z]/.test("ved"))return null;if(A&&a.dataset){if(y()&&!("ved"in a.dataset))return null;a=a.dataset.ved;return a===void 0?null:a}return a.getAttribute("data-"+"ved".replace(/([A-Z])/g,"-$1").toLowerCase())};var E=[],F=null;function G(a){a=a.target;var c=performance.now(),f=[],H=f.concat,d=E;if(!(d instanceof Array)){var m=typeof Symbol!="undefined"&&Symbol.iterator&&d[Symbol.iterator];if(m)d=m.call(d);else if(typeof d.length=="number")d={next:b(d)};else throw Error("b`"+String(d));for(var B=[];!(m=d.next()).done;)B.push(m.value);d=B}E=H.call(f,d,[c]);if(a&&a instanceof HTMLElement)if(a===F){if(c=E.length>=4)c=(E[E.length-1]-E[E.length-4])/1E3<5;if(c){c=google.getEI(a);a.hasAttribute("data-ved")?f=a?D(a)||"":"":f=(f=
a.closest("[data-ved]"))?D(f)||"":"";f=f||"";if(a.hasAttribute("jsname"))a=a.getAttribute("jsname");else{var C;a=(C=a.closest("[jsname]"))==null?void 0:C.getAttribute("jsname")}google.log("rcm","&ei="+c+"&tgtved="+f+"&jsname="+(a||""))}}else F=a,E=[c]}window.document.addEventListener("DOMContentLoaded",function(){document.body.addEventListener("click",G)});}).call(this);</script></body></html>/ #
アウトバウンドトラフィックに関しての保護を無効化
アウトバウンドトラフィックに関しての保護を無効化することで、セキュリティグループの管理が不要となる
可能であれば有効化しておくのが望ましいが、問題の切り分け等で一時的に無効化するのが良さそう
[IKS]
クラスター作成時のアウトバウンド・トラフィック保護の無効化
[ROKS]
クラスター作成時のアウトバウンド・トラフィック保護の無効化
保護の有効化時の通信確認
curlでの通信ができない
kh@khs-MacBook-Pro ~ % kubectl run -it busybox-cr --restart=Never --rm --image=jp.icr.io/khoshina-cr/busybox-cr sh
If you don't see a command prompt, try pressing enter.
/ #
/ #
/ # curl www.google.co.jp
アウトバウンドトラフィックの保護を無効化し、通信確認
% ibmcloud ks vpc outbound-traffic-protection disable --cluster cqk889ut04o0s8uqhpp0
All outbound traffic from your cluster will be permitted. Do you want to continue? [y/N]> y
OK
保護を無効化するとセキュリティグループに以下の設定が追加される
ALL 0.0.0.0/0 -> 0.0.0.0/0
通信ができることを確認
% kubectl run -it busybox-cr --restart=Never --rm --image=jp.icr.io/khoshina-cr/busybox-cr sh
If you don't see a command prompt, try pressing enter.
/ #
/ #
/ # curl www.google.co.jp
<!doctype html><html itemscope="" itemtype="http://schema.org/WebPage" lang="en"><head><meta content="Search the world's information, including webpages, images, videos and more. Google has many special features to help you find exactly what you're looking for." name="description"><meta content="noodp, " name="robots"><meta content="text/html; charset=UTF-8" http-equiv="Content-Type"><meta content="/logos/doodles/2024/paris-games-artistic-gymnastics-day-2-6753651837110526-law.gif" itemprop="image"><meta content="Paris Games - Artistic Gymnastics" property="twitter:title"><meta content="Paris Games Artistic Gymnastics! #GoogleDoodle" property="twitter:description"><meta content="Paris Games Artistic Gymnastics! #GoogleDoodle" property="og:description"><meta content="summary_large_image" property="twitter:card"><meta content="@GoogleDoodles" property="twitter:site"><meta content="https://www.google.com/logos/doodles/2024/paris-games-artistic-gymnastics-day-2-6753651837110526-2xa.gif" property="twitter:image"><meta content="https://www.google.com/logos/doodles/2024/paris-games-artistic-gymnastics-day-2-6753651837110526-2xa.gif" property="og:image"><meta content="1000" property="og:image:width"><meta content="400" property="og:image:height"><meta content="https://www.google.com/logos/doodles/2024/paris-games-artistic-gymnastics-day-2-6753651837110526-2xa.gif" property="og:url"><meta content="video.other" property="og:type"><title>Google</title><script nonce="Q6v3JYlVRQRpkazNoUvcXA">(function(){var _g={kEI:'p4yoZqUpzaPQ8Q_1v5roBg',kEXPI:'0,202726,2301798,1195813,605,439,6,538658,2872,2891,8348,3406,95562,145698,2,16395,342,23024,6699,41949,57734,2,2,1,26632,8155,8860,14490,22436,9779,62657,36747,3801,2412,1549,28670,3030,15816,1804,7734,13277,4821,9161,12089,1635,13492,15784,27083,5209473,3202,5992431,552,2840130,325,7441189,20539939,16673,43886,3,318,4,1281,3,2124363,23029351,7954,1,208,4636,16436,2727,27216,6721,44309,3072,11643,10979,885,12067,2213,8181,154,5780,11943,31553,10085,8926,2662,3432,3319,155,1,1,1,2481,13504,1004,6732,6595,4,2540,4599,206,122,1543,1674,4,3004,7936,2482,6316,3,2937,408,519,3301,2419,7302,688,929,2817,2927,1122,3,1,1770,1244,2695,1751,1255,1473,980,366,4260,477,215,2021,3548,682,452,207,5676,171,338,917,2117,2,3,3334,1149,1491,436,278,7,12,623,123,4,2458,6,783,3,1,834,361,2,6,1,3113,249,294,374,4172,126,1,6,2247,369,3,195,919,797,175,3,3,307,222,1858,2,906,1,1793,2296,1986,310,564,2014,10,702,551,670,146,1886,44,3,1,863,659,1068,1127,1253,1226,130,5,437,1,70,463,912,1,1049,125,574,98,2232,2,154,239,1,2446,703,1460,382,576,3,961,1,88,4,3,1250,71,363,386,600,110,59,441,622,167,29,185,60,123,119,483,1,1581,2,229,215,1,518,860,947,4583,47,3,1663,4,508,139,84,123,397,1,8,1,1,4,1,14,236,437,1,604,1689,136,10,206,370,834,2,1,6,622,69,208,302,637,1148,884,579,83,308,23,317,130,3,189,54,1,2,1214,1697,1091,380,678,2,1,1,2,3,21512147,5720,3,14475,3,7053,275,837,47,616,3531',kBL:'cvmk',kOPI:89978449};(function(){var a;((a=window.google)==null?0:a.stvsc)?google.kEI=_g.kEI:window.google=_g;}).call(this);})();(function(){google.sn='webhp';google.kHL='en';})();(function(){
var h=this||self;function l(){return window.google!==void 0&&window.google.kOPI!==void 0&&window.google.kOPI!==0?window.google.kOPI:null};var m,n=[];function p(a){for(var b;a&&(!a.getAttribute||!(b=a.getAttribute("eid")));)a=a.parentNode;return b||m}function q(a){for(var b=null;a&&(!a.getAttribute||!(b=a.getAttribute("leid")));)a=a.parentNode;return b}function r(a){/^http:/i.test(a)&&window.location.protocol==="https:"&&(google.ml&&google.ml(Error("a"),!1,{src:a,glmm:1}),a="");return a}
function t(a,b,c,d,k){var e="";b.search("&ei=")===-1&&(e="&ei="+p(d),b.search("&lei=")===-1&&(d=q(d))&&(e+="&lei="+d));d="";var g=b.search("&cshid=")===-1&&a!=="slh",f=[];f.push(["zx",Date.now().toString()]);h._cshid&&g&&f.push(["cshid",h._cshid]);c=c();c!=null&&f.push(["opi",c.toString()]);for(c=0;c<f.length;c++){if(c===0||c>0)d+="&";d+=f[c][0]+"="+f[c][1]}return"/"+(k||"gen_204")+"?atyp=i&ct="+String(a)+"&cad="+(b+e+d)};m=google.kEI;google.getEI=p;google.getLEI=q;google.ml=function(){return null};google.log=function(a,b,c,d,k,e){e=e===void 0?l:e;c||(c=t(a,b,e,d,k));if(c=r(c)){a=new Image;var g=n.length;n[g]=a;a.onerror=a.onload=a.onabort=function(){delete n[g]};a.src=c}};google.logUrl=function(a,b){b=b===void 0?l:b;return t("",a,b)};}).call(this);(function(){google.y={};google.sy=[];var d;(d=google).x||(d.x=function(a,b){if(a)var c=a.id;else{do c=Math.random();while(google.y[c])}google.y[c]=[a,b];return!1});var e;(e=google).sx||(e.sx=function(a){google.sy.push(a)});google.lm=[];var f;(f=google).plm||(f.plm=function(a){google.lm.push.apply(google.lm,a)});google.lq=[];var g;(g=google).load||(g.load=function(a,b,c){google.lq.push([[a],b,c])});var h;(h=google).loadAll||(h.loadAll=function(a,b){google.lq.push([a,b])});google.bx=!1;var k;(k=google).lx||(k.lx=function(){});var l=[],m;(m=google).fce||(m.fce=function(a,b,c,n){l.push([a,b,c,n])});google.qce=l;}).call(this);google.f={};(function(){
document.documentElement.addEventListener("submit",function(b){var a;if(a=b.target){var c=a.getAttribute("data-submitfalse");a=c==="1"||c==="q"&&!a.elements.q.value?!0:!1}else a=!1;a&&(b.preventDefault(),b.stopPropagation())},!0);document.documentElement.addEventListener("click",function(b){var a;a:{for(a=b.target;a&&a!==document.documentElement;a=a.parentElement)if(a.tagName==="A"){a=a.getAttribute("data-nohref")==="1";break a}a=!1}a&&b.preventDefault()},!0);}).call(this);</script><style>#gbar,#guser{font-size:13px;padding-top:1px !important;}#gbar{height:22px}#guser{padding-bottom:7px !important;text-align:right}.gbh,.gbd{border-top:1px solid #c9d7f1;font-size:1px}.gbh{height:0;position:absolute;top:24px;width:100%}@media all{.gb1{height:22px;margin-right:.5em;vertical-align:top}#gbar{float:left}}a.gb1,a.gb4{text-decoration:underline !important}a.gb1,a.gb4{color:#00c !important}.gbi .gb4{color:#dd8e27 !important}.gbf .gb4{color:#900 !important}
</style><style>body,td,a,p,.h{font-family:arial,sans-serif}body{margin:0;overflow-y:scroll}#gog{padding:3px 8px 0}td{line-height:.8em}.gac_m td{line-height:17px}form{margin-bottom:20px}.h{color:#1967d2}em{font-weight:bold;font-style:normal}.lst{height:25px;width:496px}.gsfi,.lst{font:18px arial,sans-serif}.gsfs{font:17px arial,sans-serif}.ds{display:inline-box;display:inline-block;margin:3px 0 4px;margin-left:4px}input{font-family:inherit}body{background:#fff;color:#000}a{color:#681da8;text-decoration:none}a:hover,a:active{text-decoration:underline}.fl a{color:#1967d2}a:visited{color:#681da8}.sblc{padding-top:5px}.sblc a{display:block;margin:2px 0;margin-left:13px;font-size:11px}.lsbb{background:#f8f9fa;border:solid 1px;border-color:#dadce0 #70757a #70757a #dadce0;height:30px}.lsbb{display:block}#WqQANb a{display:inline-block;margin:0 12px}.lsb{background:url(/images/nav_logo229.png) 0 -261px repeat-x;color:#000;border:none;cursor:pointer;height:30px;margin:0;outline:0;font:15px arial,sans-serif;vertical-align:top}.lsb:active{background:#dadce0}.lst:focus{outline:none}</style><script nonce="Q6v3JYlVRQRpkazNoUvcXA">(function(){window.google.erd={jsr:1,bv:2052,de:true};
var g=this||self;var k,l=(k=g.mei)!=null?k:1,n,p=(n=g.sdo)!=null?n:!0,q=0,r,t=google.erd,v=t.jsr;google.ml=function(a,b,d,m,e){e=e===void 0?2:e;b&&(r=a&&a.message);d===void 0&&(d={});d.cad="ple_"+google.ple+".aple_"+google.aple;if(google.dl)return google.dl(a,e,d,!0),null;b=d;if(v<0){window.console&&console.error(a,b);if(v===-2)throw a;b=!1}else b=!a||!a.message||a.message==="Error loading script"||q>=l&&!m?!1:!0;if(!b)return null;q++;d=d||{};b=encodeURIComponent;var c="/gen_204?atyp=i&ei="+b(google.kEI);google.kEXPI&&(c+="&jexpid="+b(google.kEXPI));c+="&srcpg="+b(google.sn)+"&jsr="+b(t.jsr)+
"&bver="+b(t.bv);t.dpf&&(c+="&dpf="+b(t.dpf));var f=a.lineNumber;f!==void 0&&(c+="&line="+f);var h=a.fileName;h&&(h.indexOf("-extension:/")>0&&(e=3),c+="&script="+b(h),f&&h===window.location.href&&(f=document.documentElement.outerHTML.split("\n")[f],c+="&cad="+b(f?f.substring(0,300):"No script found.")));google.ple&&google.ple===1&&(e=2);c+="&jsel="+e;for(var u in d)c+="&",c+=b(u),c+="=",c+=b(d[u]);c=c+"&emsg="+b(a.name+": "+a.message);c=c+"&jsst="+b(a.stack||"N/A");c.length>=12288&&(c=c.substr(0,12288));a=c;m||google.log(0,"",a);return a};window.onerror=function(a,b,d,m,e){r!==a&&(a=e instanceof Error?e:Error(a),d===void 0||"lineNumber"in a||(a.lineNumber=d),b===void 0||"fileName"in a||(a.fileName=b),google.ml(a,!1,void 0,!1,a.name==="SyntaxError"||a.message.substring(0,11)==="SyntaxError"||a.message.indexOf("Script error")!==-1?3:0));r=null;p&&q>=l&&(window.onerror=null)};})();</script></head><body bgcolor="#fff"><script nonce="Q6v3JYlVRQRpkazNoUvcXA">(function(){var src='/images/nav_logo229.png';var iesg=false;document.body.onload = function(){window.n && window.n();if (document.images){new Image().src=src;}
if (!iesg){document.f&&document.f.q.focus();document.gbqf&&document.gbqf.q.focus();}
}
})();</script><div id="mngb"><div id=gbar><nobr><b class=gb1>Search</b> <a class=gb1 href="https://www.google.co.jp/imghp?hl=en&tab=wi">Images</a> <a class=gb1 href="http://maps.google.com/maps?hl=en&tab=wl">Maps</a> <a class=gb1 href="https://play.google.com/?hl=en&tab=w8">Play</a> <a class=gb1 href="https://www.youtube.com/?tab=w1">YouTube</a> <a class=gb1 href="https://news.google.com/?tab=wn">News</a> <a class=gb1 href="https://mail.google.com/mail/?tab=wm">Gmail</a> <a class=gb1 href="https://drive.google.com/?tab=wo">Drive</a> <a class=gb1 style="text-decoration:none" href="https://www.google.com/intl/en/about/products?tab=wh"><u>More</u> »</a></nobr></div><div id=guser width=100%><nobr><span id=gbn class=gbi></span><span id=gbf class=gbf></span><span id=gbe></span><a href="http://www.google.com/history/optout?hl=en" class=gb4>Web History</a> | <a href="/preferences?hl=en" class=gb4>Settings</a> | <a target=_top id=gb_70 href="https://accounts.google.com/ServiceLogin?hl=en&passive=true&continue=http://www.google.co.jp/&ec=GAZAAQ" class=gb4>Sign in</a></nobr></div><div class=gbh style=left:0></div><div class=gbh style=right:0></div></div><center><br clear="all" id="lgpd"><div id="XjhHGf"><a href="/search?sca_esv=fa70f7cd442e3964&sca_upv=1&ie=UTF-8&q=artistic+gymnastics+olympics&oi=ddle&ct=335645538&hl=en&sa=X&ved=0ahUKEwjlmL3hlc6HAxXNETQIHfWfBm0QPQgD"><img alt="Paris Games - Artistic Gymnastics" border="0" height="200" src="/logos/doodles/2024/paris-games-artistic-gymnastics-day-2-6753651837110526-law.gif" title="Paris Games - Artistic Gymnastics" width="500" id="hplogo"><br></a><br></div><form action="/search" name="f"><table cellpadding="0" cellspacing="0"><tr valign="top"><td width="25%"> </td><td align="center" nowrap=""><input name="ie" value="Shift_JIS" type="hidden"><input value="en" name="hl" type="hidden"><input name="source" type="hidden" value="hp"><input name="biw" type="hidden"><input name="bih" type="hidden"><div class="ds" style="height:32px;margin:4px 0"><input class="lst" style="margin:0;padding:5px 8px 0 6px;vertical-align:top;color:#000" autocomplete="off" value="" title="Google Search" maxlength="2048" name="q" size="57"></div><br style="line-height:0"><span class="ds"><span class="lsbb"><input class="lsb" value="Google Search" name="btnG" type="submit"></span></span><span class="ds"><span class="lsbb"><input class="lsb" id="tsuid_1" value="I'm Feeling Lucky" name="btnI" type="submit"><script nonce="Q6v3JYlVRQRpkazNoUvcXA">(function(){var id='tsuid_1';document.getElementById(id).onclick = function(){if (this.form.q.value){this.checked = 1;if (this.form.iflsig)this.form.iflsig.disabled = false;}
else top.location='/doodles/';};})();</script><input value="AL9hbdgAAAAAZqiat33RE0GKdo7qo2kEi36ak7o4LDCC" name="iflsig" type="hidden"></span></span></td><td class="fl sblc" align="left" nowrap="" width="25%"><a href="/advanced_search?hl=en&authuser=0">Advanced search</a></td></tr></table><input id="gbv" name="gbv" type="hidden" value="1"><script nonce="Q6v3JYlVRQRpkazNoUvcXA">(function(){var a,b="1";if(document&&document.getElementById)if(typeof XMLHttpRequest!="undefined")b="2";else if(typeof ActiveXObject!="undefined"){var c,d,e=["MSXML2.XMLHTTP.6.0","MSXML2.XMLHTTP.3.0","MSXML2.XMLHTTP","Microsoft.XMLHTTP"];for(c=0;d=e[c++];)try{new ActiveXObject(d),b="2"}catch(h){}}a=b;if(a=="2"&&location.search.indexOf("&gbv=2")==-1){var f=google.gbvu,g=document.getElementById("gbv");g&&(g.value=a);f&&window.setTimeout(function(){location.href=f},0)};}).call(this);</script></form><div style="font-size:83%;min-height:3.5em"><br><div id="gws-output-pages-elements-homepage_additional_languages__als"><style>#gws-output-pages-elements-homepage_additional_languages__als{font-size:small;margin-bottom:24px}#SIvCob{color:#474747;display:inline-block;line-height:28px;}#SIvCob a{padding:0 3px;}.H6sW5{display:inline-block;margin:0 2px;white-space:nowrap}.z4hgWe{display:inline-block;margin:0 2px}</style><div id="SIvCob">Google offered in: <a href="http://www.google.co.jp/setprefs?sig=0_3xRscQiHhNw4fcI93MC-NyqjBNY%3D&hl=ja&source=homepage&sa=X&ved=0ahUKEwjlmL3hlc6HAxXNETQIHfWfBm0Q2ZgBCAY">��{��</a> </div></div></div><span id="footer"><div style="font-size:10pt"><div style="margin:19px auto;text-align:center" id="WqQANb"><a href="/intl/en/ads/">Advertising</a><a href="/services/">Business Solutions</a><a href="/intl/en/about.html">About Google</a><a href="http://www.google.co.jp/setprefdomain?prefdom=US&sig=K_jVafczmOSB-eko-xenyChehFIrI%3D" id="fehl">Google.com</a></div></div><p style="font-size:8pt;color:#70757a">© 2024 - <a href="/intl/en/policies/privacy/">Privacy</a> - <a href="/intl/en/policies/terms/">Terms</a></p></span></center><script nonce="Q6v3JYlVRQRpkazNoUvcXA">(function(){window.google.cdo={height:757,width:1440};(function(){var a=window.innerWidth,b=window.innerHeight;if(!a||!b){var c=window.document,d=c.compatMode=="CSS1Compat"?c.documentElement:c.body;a=d.clientWidth;b=d.clientHeight}
if(a&&b&&(a!=google.cdo.width||b!=google.cdo.height)){var e=google,f=e.log,g="/client_204?&atyp=i&biw="+a+"&bih="+b+"&ei="+google.kEI,h="",k=[],l=window.google!==void 0&&window.google.kOPI!==void 0&&window.google.kOPI!==0?window.google.kOPI:null;l!=null&&k.push(["opi",l.toString()]);for(var m=0;m<k.length;m++){if(m===0||m>0)h+="&";h+=k[m][0]+"="+k[m][1]}f.call(e,"","",g+h)};}).call(this);})();</script> <script nonce="Q6v3JYlVRQRpkazNoUvcXA">(function(){google.xjs={basecomb:'/xjs/_/js/k\x3dxjs.hp.en.ZVIiGGLVy-E.O/ck\x3dxjs.hp.2KH4V20d5r4.L.X.O/am\x3dAQAAEAAAAAAAAAAAAAAAAAAAAAAABAAAAAAAAAAABsABAACAAIBAAAAAAAAeAAAABAAACEAIAIABIAAAHIjvCAAEwCIAALw/d\x3d1/ed\x3d1/dg\x3d0/ujg\x3d1/rs\x3dACT90oGJK_0NkrZAB77et0Hl1vL8fMvEOw',basecss:'/xjs/_/ss/k\x3dxjs.hp.2KH4V20d5r4.L.X.O/am\x3dAQAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAAIBAAAAAAAAAAAAABAAACEAIAIABIA/rs\x3dACT90oH5KjWlmueBN5fRpQBfWLl0qjEI0w',basejs:'/xjs/_/js/k\x3dxjs.hp.en.ZVIiGGLVy-E.O/am\x3dAAAAAAAAAAAAAAAAAAAAAAAAAAAABAAAAAAAAAAABsABAAAAAAAAAAAAAAAeAAAAAAAAAAAAAAAAAAAAHIjvCAAEwCIAALw/dg\x3d0/rs\x3dACT90oHWix7p9poeFtREbVgKwCvDaW52xQ',excm:[]};})();</script> <link href="/xjs/_/ss/k=xjs.hp.2KH4V20d5r4.L.X.O/am=AQAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAAIBAAAAAAAAAAAAABAAACEAIAIABIA/d=1/ed=1/rs=ACT90oH5KjWlmueBN5fRpQBfWLl0qjEI0w/m=sb_he,d" rel="stylesheet" nonce="Q6v3JYlVRQRpkazNoUvcXA"> <script nonce="Q6v3JYlVRQRpkazNoUvcXA">(function(){var u='/xjs/_/js/k\x3dxjs.hp.en.ZVIiGGLVy-E.O/am\x3dAAAAAAAAAAAAAAAAAAAAAAAAAAAABAAAAAAAAAAABsABAAAAAAAAAAAAAAAeAAAAAAAAAAAAAAAAAAAAHIjvCAAEwCIAALw/d\x3d1/ed\x3d1/dg\x3d3/rs\x3dACT90oHWix7p9poeFtREbVgKwCvDaW52xQ/m\x3dsb_he,d';var st=1;var amd=1000;var mmd=0;var pod=true;
var f=this||self,g=function(a){return a};var h;var k=function(a){this.g=a};k.prototype.toString=function(){return this.g+""};var l=function(a){return a instanceof k&&a.constructor===k?a.g:"type_error:TrustedResourceUrl"},m={};
var n=/^\s*(?!javascript:)(?:[\w+.-]+:|[^:/?#]*(?:[/?#]|$))/i;var p="alternate author bookmark canonical cite help icon license modulepreload next prefetch dns-prefetch prerender preconnect preload prev search subresource".split(" ");function q(a,b){a.src=l(b);var c,d;(c=(b=(d=(c=(a.ownerDocument&&a.ownerDocument.defaultView||window).document).querySelector)==null?void 0:d.call(c,"script[nonce]"))?b.nonce||b.getAttribute("nonce")||"":"")&&a.setAttribute("nonce",c)};var r=function(a){var b=document;a=String(a);b.contentType==="application/xhtml+xml"&&(a=a.toLowerCase());return b.createElement(a)};function t(a){a=a===null?"null":a===void 0?"undefined":a;if(h===void 0){var b=null;var c=f.trustedTypes;if(c&&c.createPolicy){try{b=c.createPolicy("goog#html",{createHTML:g,createScript:g,createScriptURL:g})}catch(d){f.console&&f.console.error(d.message)}h=b}else h=b}a=(b=h)?b.createScriptURL(a):a;return new k(a,m)};google.ps===void 0&&(google.ps=[]);function w(){var a=u,b=function(){};google.lx=google.stvsc?b:function(){x(a);google.lx=b};google.bx||google.lx()}function y(a,b){b&&q(a,t(b));var c=a.onload;a.onload=function(d){c&&c(d);google.ps=google.ps.filter(function(e){return a!==e})};google.ps.push(a);document.body.appendChild(a)}google.as=y;function x(a){google.timers&&google.timers.load&&google.tick&&google.tick("load","xjsls");var b=r("SCRIPT");b.onerror=function(){google.ple=1};b.onload=function(){google.ple=0};google.xjsus=void 0;y(b,a);google.aple=-1;google.dp=!0}
function z(){var a=[u];if(!google.dp){for(var b=0;b<a.length;b++){var c=r("LINK"),d=c,e=t(a[b]);if(e instanceof k)d.href=l(e).toString(),d.rel="preload";else{if(p.indexOf("preload")===-1)throw Error("a`preload");e=n.test(e)?e:void 0;e!==void 0&&(d.href=e,d.rel="preload")}c.setAttribute("as","script");document.body.appendChild(c)}google.dp=!0}};function A(a){var b=a.getAttribute("jscontroller");return(b==="UBXHI"||b==="R3fhkb"||b==="TSZEqd")&&a.hasAttribute("data-src")}function B(){for(var a=document.getElementsByTagName("img"),b=0,c=a.length;b<c;b++){var d=a[b];if(d.hasAttribute("data-lzy_")&&Number(d.getAttribute("data-atf"))&1&&!A(d))return!0}return!1}for(var C=document.getElementsByTagName("img"),D=0,E=C.length;D<E;++D){var F=C[D];Number(F.getAttribute("data-atf"))&1&&A(F)&&(F.src=F.getAttribute("data-src"))};var G,H,I,J,K;function L(){google.xjsu=u;f._F_jsUrl=u;J=function(){w()};G=!1;H=(st===1||st===3)&&!!google.caft&&!B();I=(st===2||st===3)&&!!google.rairicb&&!B();K=pod}function M(){G||H||I||(J(),G=!0)}setTimeout(function(){google&&google.tick&&google.timers&&google.timers.load&&google.tick("load","xjspls");L();if(H||I){if(H){var a=function(){H=!1;M()};google.caft(a);window.setTimeout(a,amd)}I&&(a=function(){I=!1;M()},(0,google.rairicb)(a),window.setTimeout(a,mmd));K&&(G||z())}else J()},0);})();window._ = window._ || {};window._DumpException = _._DumpException = function(e){throw e;};window._s = window._s || {};_s._DumpException = _._DumpException;window._qs = window._qs || {};_qs._DumpException = _._DumpException;(function(){var t=[268435457,0,0,0,0,1310720,0,268518400,16892006,131080,1032,125829696,67108864,2097152,402653316,2576,149915676,185077760,197132290];window._F_toggles = window._xjs_toggles = t;})();window._F_installCss = window._F_installCss || function(css){};(function(){google.jl={bfl:0,dw:false,ine:false,ubm:false,uwp:true,vs:false};})();(function(){var pmc='{\x22d\x22:{},\x22sb_he\x22:{\x22agen\x22:false,\x22cgen\x22:false,\x22client\x22:\x22heirloom-hp\x22,\x22dh\x22:true,\x22ds\x22:\x22\x22,\x22fl\x22:true,\x22host\x22:\x22google.co.jp\x22,\x22jsonp\x22:true,\x22msgs\x22:{\x22cibl\x22:\x22Clear Search\x22,\x22dym\x22:\x22Did you mean:\x22,\x22lcky\x22:\x22I\\u0026#39;m Feeling Lucky\x22,\x22lml\x22:\x22Learn more\x22,\x22psrc\x22:\x22This search was removed from your \\u003Ca href\x3d\\\x22/history\\\x22\\u003EWeb History\\u003C/a\\u003E\x22,\x22psrl\x22:\x22Remove\x22,\x22sbit\x22:\x22Search by image\x22,\x22srch\x22:\x22Google Search\x22},\x22ovr\x22:{},\x22pq\x22:\x22\x22,\x22rfs\x22:[],\x22stok\x22:\x224k5F9VBQYHUf7P89rZeEuDYVd0M\x22}}';google.pmc=JSON.parse(pmc);})();(function(){var b=function(a){var c=0;return function(){return c<a.length?{done:!1,value:a[c++]}:{done:!0}}};
var e=this||self;var g,h;a:{for(var k=["CLOSURE_FLAGS"],l=e,n=0;n<k.length;n++)if(l=l[k[n]],l==null){h=null;break a}h=l}var p=h&&h[610401301];g=p!=null?p:!1;var q,r=e.navigator;q=r?r.userAgentData||null:null;function t(a){return g?q?q.brands.some(function(c){return(c=c.brand)&&c.indexOf(a)!=-1}):!1:!1}function u(a){var c;a:{if(c=e.navigator)if(c=c.userAgent)break a;c=""}return c.indexOf(a)!=-1};function v(){return g?!!q&&q.brands.length>0:!1}function w(){return u("Safari")&&!(x()||(v()?0:u("Coast"))||(v()?0:u("Opera"))||(v()?0:u("Edge"))||(v()?t("Microsoft Edge"):u("Edg/"))||(v()?t("Opera"):u("OPR"))||u("Firefox")||u("FxiOS")||u("Silk")||u("Android"))}function x(){return v()?t("Chromium"):(u("Chrome")||u("CriOS"))&&!(v()?0:u("Edge"))||u("Silk")}function y(){return u("Android")&&!(x()||u("Firefox")||u("FxiOS")||(v()?0:u("Opera"))||u("Silk"))};var z=v()?!1:u("Trident")||u("MSIE");y();x();w();var A=!z&&!w(),D=function(a){if(/-[a-z]/.test("ved"))return null;if(A&&a.dataset){if(y()&&!("ved"in a.dataset))return null;a=a.dataset.ved;return a===void 0?null:a}return a.getAttribute("data-"+"ved".replace(/([A-Z])/g,"-$1").toLowerCase())};var E=[],F=null;function G(a){a=a.target;var c=performance.now(),f=[],H=f.concat,d=E;if(!(d instanceof Array)){var m=typeof Symbol!="undefined"&&Symbol.iterator&&d[Symbol.iterator];if(m)d=m.call(d);else if(typeof d.length=="number")d={next:b(d)};else throw Error("b`"+String(d));for(var B=[];!(m=d.next()).done;)B.push(m.value);d=B}E=H.call(f,d,[c]);if(a&&a instanceof HTMLElement)if(a===F){if(c=E.length>=4)c=(E[E.length-1]-E[E.length-4])/1E3<5;if(c){c=google.getEI(a);a.hasAttribute("data-ved")?f=a?D(a)||"":"":f=(f=
a.closest("[data-ved]"))?D(f)||"":"";f=f||"";if(a.hasAttribute("jsname"))a=a.getAttribute("jsname");else{var C;a=(C=a.closest("[jsname]"))==null?void 0:C.getAttribute("jsname")}google.log("rcm","&ei="+c+"&tgtved="+f+"&jsname="+(a||""))}}else F=a,E=[c]}window.document.addEventListener("DOMContentLoaded",function(){document.body.addEventListener("click",G)});}).call(this);</script></body></html>/ #
アウトバウンドトラフィックの保護を有効化
追加されたセキュリティグループの削除される。
% ibmcloud ks vpc outbound-traffic-protection enable --cluster cqk889ut04o0s8uqhpp0
All outbound traffic is blocked unless it is allowed by a security group. Do you want to continue? [y/N]> y
OK
セキュリティグループ設定の初期化
以下のコマンドで実施できるが、徐々に初期化されてデフォルト設定が復活する。
そのため、一時的に通信ができなくなるので問題なければ実施すること
ibmcloud ks security-group reset --cluster --security-group <初期化対象のセキュリティグループID>
% ibmcloud ks security-group reset --cluster cqk889ut04o0s8uqhpp0 --security-group r022-4fae70ec-ed93-4bbc-a6bf-73f252353bca
ルールをリセットする間、クラスターへのネットワーク・トラフィックが一時的にブロックされる可能性があります。 続行しますか? [y/N]> y
OK