I created a AKS cluster following the documentation procedure. I created pod inside the cluster and when getting a tty into them (kubectl exec -it pod-name -- /bin/bash
), realized that the containers don't have access to resources outside Azure: I can't ping 8.8.8.8, I can't resolve FQDN of public websites.
I can't find any Azure documentation where it is clearly stated that a pod is supposed to have access to network outside the cluster. I can find this type of documentation where we can read that allowing the outbound flow to a public source is supposed to be the default behaviour (but in practice I can see that it is not the case), I found tons of blogs posts explaining how-to use static IPs for my k8s services, but this is not what I want to know.
What I want to know: is the default behaviour of an Azure Kubernetes cluster to allow outbound traffic, or did I do something wrong in my installation?