Cluster Configuration

    In this example, we will use gcloud to simplify the creation of the said firewall rule.

    Setup:

    1. MASTER_IPV4_CIDR=$(gcloud container clusters describe $CLUSTER_NAME \
    2.   | grep "masterIpv4CidrBlock: " \

    Get the cluster NETWORK:

    Get the cluster auto-generated NETWORK_TARGET_TAG:

    2.   --filter network=$NETWORK --format json \
    3.   | jq ".[] | select(.name | contains(\"$CLUSTER_NAME\"))" \
    4.   | jq -r '.targetTags[0]' | head -1)

    Verify the values:

    Create the firewall rules for proxy-injector and :

    1.   --network "$NETWORK" \
    2.   --allow "tcp:8443,tcp:8089" \
    3.   --source-ranges "$MASTER_IPV4_CIDR" \
    4.   --target-tags "$NETWORK_TARGET_TAG" \
    5.   --description "Allow traffic on ports 8443, 8089 for linkerd control-plane components"