place pf9ctl on the DU for downloading

recently one of the customers asked for pf9 URLs in order to whitelist them in the customer's firewall. Customers do expect to keep the whitelist URLs to minimum.

With that in mind I suggest that we keep pf9ctl on the management plane to reduce the number of URLs in whitelisting.

Guest
Mar 17 2023
Planned

Kubernetes / Authentication and authorization

Comments (2)

Attach files
Enter a subject
Drop here to upload

Guest commented

09 Apr 06:45

Minimizing customer firewall whitelisting is crucial. Keeping pf9ctl primarily on the management plane is a good strategy as it reduces the number of URLs customers need to manage. While direct node access might be needed for specific diagnostics, the standard toll-by-plate program operation should rely on the management plane. Ensure clear documentation of the essential URLs and any exceptions for advanced troubleshooting. This approach simplifies security and management for customers.

Attachments Open full size
Guest commented

April 10, 2023 05:48

i am facing same issue

Attachments Open full size

place pf9ctl on the DU for downloading

Identify yourself with your email address

Related ideas