bug: unable to run Lambda DinD setup in k8s with restricted egres #10776
Comments
jsteenb2
added
status: triage needed
|
Welcome to LocalStack! Thanks for reporting your first issue and our team will be working towards fixing the issue for you or reach out for more background information. We recommend joining our Slack Community for real-time help and drop a message to LocalStack Pro Support if you are a Pro user! If you are willing to contribute towards fixing this issue, please have a look at our contributing guidelines and our contributing guide. |
|
Hi @jsteenb2 ! You can use our |
dominikschubert
added
type: question
|
@dominikschubert , I'm a little confused, which is the image that executes a zip lambda? We execute both go and python zip lambas in our tests. |
localstack-bot
removed
the
status: response required
Is there an existing issue for this?
Current Behavior
We have added restricted egress to our entire infrastructure. When this happened in our CI pipeline, we saw the lambda tests starting to fail. They are unable to reach public.ecr registry to pull that img. I checked the documentation and source code to find a means to use our specific img registry that will proxy to public.ecr, but I came up with no answers.
additional background:
Expected Behavior
I expected a means to set the img that DinD uses to execute the lambda functions where the img is proxied through our img registry proxies (aka, egress allowed).
How are you starting LocalStack?
With a docker-compose file
Steps To Reproduce
run localstack in a k8s environment with restricted egres disallowing the pullling of imgs from
public.ecr.aws/lambda. Then attempt to run any function. Await failure.Environment
Anything else?
this issue manifests in both our community edition tests as well as our paid pro tests. Regardless it doesn't allow for the injection of the
public.ecr.aws/lambdaimg. We'll need to override that to utilize our proxies.The text was updated successfully, but these errors were encountered: