IP Aliasing Disabled
- Query id: 28727987-e398-49b8-aef1-8a3e7789d111
- Query name: IP Aliasing Disabled
- Platform: GoogleDeploymentManager
- Severity: High
- Category: Insecure Configurations
- URL: Github
Description¶
Kubernetes Clusters must be created with Alias IP ranges enabled, which means the attribute 'ipAllocationPolicy' must be defined and the subattribute 'useIpAliases' must be set to 'true'.
Documentation
Code samples¶
Code samples with security vulnerabilities¶
Postitive test num. 1 - yaml file
resources:
- name: cluster
type: container.v1.cluster
properties:
description: my-cluster
Postitive test num. 2 - yaml file
resources:
- name: cluster
type: container.v1.cluster
properties:
description: my-cluster
ipAllocationPolicy:
subnetworkName: my-network
Postitive test num. 3 - yaml file
resources:
- name: cluster
type: container.v1.cluster
properties:
description: my-cluster
ipAllocationPolicy:
subnetworkName: my-network
useIpAliases: false