Internet AccessĪll nodes in the cluster have outbound access to the internet via a NAT Gateway and Internet Gateway. See Infrastructure security in Amazon EKS for AWS recommendations. If this is not appropriate for your organisation's risk appetite, then you will need to switch access to private and provide appropriate routing. Security Notes Kubernetes Control Plane (EKS)īy default, AWS makes the control plane (Kubernetes API) for EKS clusters available to the internet and secures them using IAM. Needed, so that it may be tailored to any specific context. The template is a single "monolithic" file to make it simpler to cherry-pick or remove resources as The database admin password for the new database.Įnable or disable delete protection on the RDS database The database admin username for the new database. The type of nodes to place in the cluster.ĭatabase instance size if provisioning a new database.ĭatabase storage type when provisioning the database The disk size for each node in the EKS node group. The version of Kubernetes to use in the EKS cluster specified as major.minor e.g. The CIDR block to be used by the nodes subnet in availability zone B. The CIDR block to be used by the nodes subnet in availability zone A. The CIDR block to be used by the public subnet in availability zone A. Specifies the number of days you want to retain log events. Is" with the default values or can be customised with the parameters below: Parameter NameĪ human-readable name for the stack that will be used to name all of the resources. Supporting network and security resources.įor AWS, the Infrastructure Definition is a CloudFormation template. This includes a VPC, EKS Cluster, EFS FileSystem, RDS Instance and The Infrastructure Definition declares the network, compute, storage and database resources needed to support theīurp Suite Enterprise Edition application. set = $ " Infrastructure Definition (CloudFormation template)
Burp suite enterprise install#
Helm install bsee-eks-cluster-config eks-cluster-config/ -namespace bsee \
Burp suite enterprise update#
Helm dependency update eks-cluster-config/ DATABASE_ENTERPRISE_SERVER_USERNAME=burp_enterpriseĭATABASE_ENTERPRISE_SERVER_PASSWORD=change_meĭATABASE_SCANNING_RESOURCE_USERNAME=burp_agentĭATABASE_SCANNING_RESOURCE_PASSWORD=change_me
0 kommentar(er)
