kubectl端口转发是否已加密? [英] Is kubectl port-forward encrypted?

问题描述

在运行"kubectl port-forward"命令时，无论在群集的pod和locahost之间建立的连接是否被加密，我都找不到任何信息.

I couldn't find any information on wherever a connection creation between cluster's pod and locahost is encrypted when running "kubectl port-forward" command.

似乎它使用了支持加密的" socat "库，但是我我不确定kubernetes是否实际使用它.

It seems like it uses "socat" library which supports encryption, but I'm not sure if kubernetes actually uses it.

推荐答案

据我所知，当您将所选端口移植到计算机时，kubectl连接到群集的主节点之一，因此，通常通信是加密.主机如何与Pod进行通信取决于您如何设置内部通讯.

As far as I know when you port-forward the port of choice to your machine kubectl connects to one of the masters of your cluster so yes, normally communication is encrypted. How your master communicate to the pod though is dependent on how you set up internal comms.

这篇关于kubectl端口转发是否已加密?的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！