Answer-first summary for fast verification
Answer: Specify the ip target type for the NLB. Set the externalTrafficPolicy attribute to Local in the Kubernetes service specification.
To ensure that the pods have visibility of the source IP address from the original packet received by the NLB, the NLB should be configured with the 'ip' target type. This allows the NLB to route traffic directly to the pods' IP addresses, preserving the source IP. Additionally, setting the 'externalTrafficPolicy' attribute to 'Local' in the Kubernetes service specification ensures that traffic is routed to pods within the same node, further preserving the source IP. This configuration is crucial for applications that require visibility of the client's source IP for security, logging, or other purposes. Therefore, the correct configuration is to specify the 'ip' target type for the NLB and set the 'externalTrafficPolicy' attribute to 'Local' in the Kubernetes service specification.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
How should the network engineer configure the Network Load Balancer (NLB) and Amazon Elastic Kubernetes Service (EKS) settings to ensure that the pods hosting an internet-facing application can see the source IP address from the original packet received by the NLB, while using the Amazon VPC Container Network Interface (CNI) plugin for pod networking connectivity?
A
Specify the ip target type for the NLB. Set the externalTrafficPolicy attribute to Local in the Kubernetes service specification.
B
Specify the instance target type for the NLB. Set the externalTrafficPolicy attribute to Cluster in the Kubernetes service specification.
C
Specify the instance target type for the NLB. Set the externalTrafficPolicy attribute to Local in the Kubernetes service specification.
D
Specify the ip target type for the NLB. Set the externalTrafficPolicy attribute to Cluster in the Kubernetes service specification.
No comments yet.