Let's say that you have a kubernetes cluster with a few nodes in a project in google cloud, and you have one separate instance in that project that all the nodes should have access to.
How do you go about granting access to this instance dynamically from the nodes? This is provided you are using the external ip address, not internal and not dependent on the ips given to the nodes.
I have tried doing this using tags and service accounts within the firewall rules without success. If anyone know of a better or more elegant way that actually works I would love to read it.