I run several K8S cluster on EKS and by default do not setup inbound SSH to the nodes. Sometimes I need to get into each node to check things or run a one-off tool.
Rather than update my terraform, rebuild the launch templates and redeploy brand new nodes, I decided to use kubernetes to access each node directly.
| kind: DaemonSet | |
| apiVersion: apps/v1 | |
| metadata: | |
| name: downgradecontainerd | |
| namespace: kube-system | |
| labels: | |
| app: downgradecontainerd | |
| spec: | |
| selector: | |
| matchLabels: |
| --- | |
| apiVersion: v1 | |
| kind: Namespace | |
| metadata: | |
| name: nginx | |
| --- | |
| apiVersion: rbac.authorization.k8s.io/v1 | |
| kind: Role | |
| metadata: | |
| name: nginx-service-account |