Accessing private clusters

When you have an Red Hat OpenShift cluster created with a private-only endpoint, you might need to access your cluster from outside of IBM Cloud.

The Red Hat OpenShift master is accessible through the private cloud service endpoint if authorized cluster users are in your IBM Cloud private network or are connected to the private network. There are two ways to set up your VPN to access your private clusters: client-to-site or site-to-site. For more details, see VPNs for VPC overview.

To understand the fundamentals about how to apply the client-to-site VPN in IBM Cloud to access private clusters, start with this blog. This blog article does a walkthrough of creating a client-to-site VPN service that you can use to connect client machines such as Macs and PCs to your IBM Cloud VPC network, Red Hat OpenShift clusters, Cloud Service Endpoints (CSE),  IaaS services, and to your private classic subnets.