v2.4.6

v2.4.6 (requires Kubernetes 1.19+)

Documentation

Image: public.ecr.aws/eks/aws-load-balancer-controller:v2.4.6

Thanks to all our contributors! 😊

Whats new

1. This release introduces new annotation service.beta.kubernetes.io/aws-load-balancer-healthcheck-success-codes to configure the HTTP success codes for NLB target group health check for http/https healthcheck protocol
2. Controller doesn't delete existing NLB target group to reconfigure health check configuration with default configuration. You can revert to the earlier behavior by setting the feature gate NLBHealthCheckAdvancedConfiguration to false
3. Controller configures the NLB target group health check timeout based on the annotation service.beta.kubernetes.io/aws-load-balancer-healthcheck-timeout. You can disable this by setting the feature gate NLBHealthCheckAdvancedConfiguration to false

Changelog since v2.4.5

• add example of blue/green deployment (#2911, @geoffcline)
• Ability to reconfigure NLB target group health check (#2967, @kishorj)
• Replace "SSL" with "TLS" where possible in documentation (#2962, @johngmyers)
• docs: update contibutor docs (#2961, @prasadkatti)
• Update eksctl and eks default versions for e2e tests (#2960, @kishorj)
• Update index.md (#2959, @Kostavro)
• docs: fix gRPCServer example (#2954, @prasadkatti)
• update controller-gen to v0.11.1 (#2953, @kishorj)
• fix typos in doc about self managed lb (#2947, @Kostavro)
• docs: make external-dns optional in echoserver walkthrough (#2950, @prasadkatti)
• fix: typo in synthesizer test (#2941, @yasinlachiny)
• use multi-arch image for service e2e test (#2943, @kishorj)
• Update installation.md (nit) (#2937, @mtulio)
• move test images to ecr public (#2935, @kishorj)
• Use public ECR repository by default (#2907, @kishorj)
• fix: health check timeout for services/NLB (#2899, @project0)
• update external dns manifest and docs (#2895, @kishorj)
• update external dns manifest url (#2892, @kishorj)
• update go packages and dependencies (#2887, @kishorj)
• update filename from the set-version script (#2889, @kishorj)
• Stop restricting branches for unit test action (#2879, @johngmyers)
• Improve echo server example documentation (#2853, @kevin85421)
• Fix consistency of version references in documentation, etc. (#2880, @johngmyers)
• Documentation update to warn of Access Control bypass when conversion from IPv4 to IPv6 on NLBs (#2868, @wilief)
• Fix to use a code block in the guide of ingress annotations (#2877, @hadusam)
• Fix typo of a comment in pkg/networking/subnet_resolver.go (#2876, @hadusam)

v2.4.5

v2.4.5 (requires Kubernetes 1.19+)

Documentation

Image: docker.io/amazon/aws-alb-ingress-controller:v2.4.5

Thanks to all our contributors! 😊

Fixes

• Fix webhookNamespaceSelectors in HelmChart (#2816, @mikutas)

Changelog since v2.4.4

• Infer VPCID from controller's nodeName when running with cloud controller manager (#2824, @olemarkus )
• Query IMDS over IPv6 when controller pod don't have IPv4 addresses (#2453, @johngmyers)
• Upgrade controller-runtime to v0.9.7 (#2833, @jdn5126 )
• Upgrade Golang to v1.19.3 (#2871, @M00nF1sh )
• Maintain helm chart test.yaml file (#2872, @BobDu )
• Install correct ginkgo version and pass no color to script (#2839, @jdn5126 )
• Upgrade ginkgo version; address go fmt(#2835, @jdn5126 )
• Fix misspelling in documentation(#2871, @yiyu0x)
• Fix documentation about alpn-policy (#2831, @BouchaaraAdil)

ECR images

• 013241004608.dkr.ecr.us-gov-west-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.5
• 151742754352.dkr.ecr.us-gov-east-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.5
• 558608220178.dkr.ecr.me-south-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.5
• 590381155156.dkr.ecr.eu-south-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.5
• 602401143452.dkr.ecr.ap-northeast-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.5
• 602401143452.dkr.ecr.ap-northeast-2.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.5
• 602401143452.dkr.ecr.ap-northeast-3.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.5
• 602401143452.dkr.ecr.ap-south-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.5
• 602401143452.dkr.ecr.ap-southeast-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.5
• 602401143452.dkr.ecr.ap-southeast-2.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.5
• 602401143452.dkr.ecr.ca-central-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.5
• 602401143452.dkr.ecr.eu-central-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.5
• 602401143452.dkr.ecr.eu-north-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.5
• 602401143452.dkr.ecr.eu-west-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.5
• 602401143452.dkr.ecr.eu-west-2.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.5
• 602401143452.dkr.ecr.eu-west-3.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.5
• 602401143452.dkr.ecr.sa-east-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.5
• 602401143452.dkr.ecr.us-east-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.5
• 602401143452.dkr.ecr.us-east-2.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.5
• 602401143452.dkr.ecr.us-west-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.5
• 602401143452.dkr.ecr.us-west-2.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.5
• 800184023465.dkr.ecr.ap-east-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.5
• 877085696533.dkr.ecr.af-south-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.5
• 918309763551.dkr.ecr.cn-north-1.amazonaws.com.cn/amazon/aws-load-balancer-controller:v2.4.5
• 961992271922.dkr.ecr.cn-northwest-1.amazonaws.com.cn/amazon/aws-load-balancer-controller:v2.4.5

v2.4.4

v2.4.3 (requires Kubernetes 1.19+)

Documentation

Image: docker.io/amazon/aws-alb-ingress-controller:v2.4.4

Thanks to all our contributors! 😊

What's new

1. A new Service annotation service.beta.kubernetes.io/aws-load-balancer-ipv6-addresses, which allows to customize the IPv6 addresses on NLB.
2. A new Helm chart flag ingressClassConfig.default, which allows to set the default provided alb IngressClass as default IngressClass in cluster.
3. A new Helm chart flag cluster.dnsDomain, which allows to set customized dnsDomain other than the default cluster.local
4. A new Helm chart flag controllerConfig.featureGates, which allows to set --feature-gates flag on controller Deployment.

Fixes

1. Fix error handling during LoadBalancer deletion.

Changelog since v2.4.3

• cut v2.4.4 release (#2815, @M00nF1sh)
• configure default client-side throttle for ELBv2 APIs (#2810, @kishorj)
• upgrade to golang 1.18.6 (#2808, @M00nF1sh)
• Fix typo (#2798, @yiyu0x)
• Fix webhook port value (#2795, @vi-credo)
• add support for configure static IPv6 addresses on NLB (#2790, @M00nF1sh)
• feat: add default ingressclass annotation ✨ (#2756, @meysam81)
• fix error handling of load balancer deletion (#2783, @bitoku)
• Sticky weighted routing (#2740, @hanyhesham)
• Update to golang 1.18 (#2774, @kishorj)
• add guide on using a self managed (or existing) load balancer (#2765, @geoffcline)
• Allow configuring the actual cluster DNS domain for the TLS certificate (#2770, @stephan2012)
• Allow configuring the controller feature gates in helm chart (#2776, @khizunov)
• refine docs about NLB (#2780, @M00nF1sh)
• Fix documentation typo s/Amzon/Amazon/ (#2773, @jalessio)

ECR images

• 013241004608.dkr.ecr.us-gov-west-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.4
• 151742754352.dkr.ecr.us-gov-east-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.4
• 558608220178.dkr.ecr.me-south-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.4
• 590381155156.dkr.ecr.eu-south-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.4
• 602401143452.dkr.ecr.ap-northeast-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.4
• 602401143452.dkr.ecr.ap-northeast-2.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.4
• 602401143452.dkr.ecr.ap-northeast-3.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.4
• 602401143452.dkr.ecr.ap-south-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.4
• 602401143452.dkr.ecr.ap-southeast-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.4
• 602401143452.dkr.ecr.ap-southeast-2.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.4
• 602401143452.dkr.ecr.ca-central-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.4
• 602401143452.dkr.ecr.eu-central-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.4
• 602401143452.dkr.ecr.eu-north-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.4
• 602401143452.dkr.ecr.eu-west-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.4
• 602401143452.dkr.ecr.eu-west-2.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.4
• 602401143452.dkr.ecr.eu-west-3.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.4
• 602401143452.dkr.ecr.sa-east-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.4
• 602401143452.dkr.ecr.us-east-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.4
• 602401143452.dkr.ecr.us-east-2.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.4
• 602401143452.dkr.ecr.us-west-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.4
• 602401143452.dkr.ecr.us-west-2.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.4
• 800184023465.dkr.ecr.ap-east-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.4
• 877085696533.dkr.ecr.af-south-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.4
• 918309763551.dkr.ecr.cn-north-1.amazonaws.com.cn/amazon/aws-load-balancer-controller:v2.4.4
• 961992271922.dkr.ecr.cn-northwest-1.amazonaws.com.cn/amazon/aws-load-balancer-controller:v2.4.4

v2.4.3

v2.4.3 (requires Kubernetes 1.19+)

Documentation

Image: docker.io/amazon/aws-alb-ingress-controller:v2.4.3

Thanks to all our contributors! 😊

What's new

1. This release introduces a new feature gate SubnetsClusterTagCheck, if set to false the controller ignores the cluster tag kubernetes.io/cluster/${cluster-name} during subnet auto-discovery. This featureGate is set to true by default, you can disable via the controller flag --feature-gates=SubnetsClusterTagCheck=false.
2. A new feature gate EnableIPTargetType, if set to false, disables IP target support.
3. Allow negative and duplicate group.orders for ingress group
4. Update the base container image
5. Helm chart changes

Fixes

1. Set correct precedence for ingress rules in case of multiple matches
2. enhance handling for InvalidIngressClass case
3. fix failures during upgrade when using the default provided IngressClass and IngressClassParam
4. CVE-2022-28948

Changelog since v2.4.2

• enhance handling for InvalidIngressClass case (#2750, @M00nF1sh)
• add docs for NLB TLS termination (#2680, @geoffcline)
• revise install guide (#2704, @geoffcline)
• bump chart version to 1.4.3 (#2746, @M00nF1sh)
• add HELM support for aws-api-throttle (#2745, @M00nF1sh)
• use a dedicated config to disable default pod affinity (#2743, @kishorj)
• fix failures during upgrade when using the default provided IngressClass and IngressClassParam [#2732, @M00nF1sh]
• Helm: Add field for Webhook namespace selector (#2724, @Volatus)
• Update go pkg dependencies (#2742, @kishorj)
• Enhance client side throttling information (#2739, @orsenthil)
• e2e test changes to support china regions (#2723, @cgchinmay)
• Update default cluster version for e2e tests (#2659, @kishorj)
• Do not set caBundle for webhooks if CertManager is used (#2649, @mikael-lindstrom)
• Fix Dockerfile go dependency caching (#2626, @hintofbasil)
• Add docs for example of gRPC health check success codes (#2700, @ugwis)
• docs: update versions in instructions to match official AWS docs (#2714, @Volatus)
• Fixed typo: Listner => Listener (#2712, @PrajwalBorkar)
• Add clusterName as debug info for troubleshooting (#2696, @guessi)
• Updated run-e2e-test script to remove eksctl iamserviceaccount creation (#2664, @cgchinmay)
• Fix for failing Ingress tests (#2658, @cgchinmay)
• Add support to disable cluster tag check during subnet auto-discovery (#2635, @oliviassss)
• Added EnableIPTargetType flag to controller (#2587, @thejasn)
• Allow negative and duplicate group.orders (#2634, @jtdoepke)
• Migrate to ginkgo v2 (#2639, @cgchinmay)
• Add imagePullSecrets option to ServiceAccount in helm chart (#2624, @BrianKopp)
• feat: add optional service monitor namespace (#2609, @shalom-cyera)
• helm: Add additionalLabels to all components (#2618, @jdheyburn)
• fix log level (#2598, @mikutas)
• helm: add deployment annotation (#2611, @krrrr38)
• Format clusterSecretsPermissions.allowAllSecrets (#2620, @orsenthil)
• [minor] - print the env variable name in the output (#2610, @orsenthil)
• Sort ingress rules by path length and pathType (#2409, @oliviassss)
• helm chart update ; adding support to set affinity in podSpec to the empty map (#2576, @stensonb)
• adding optional support for topologySpreadConstraints to helm chart (#2575, @stensonb)
• separate target for helm chart crds generation (#2577, @kishorj)
• [Doc] Update migrate_v1_v2 document (#2573, @yws-ss)
• Auto generate CRDs for the Helm chart (#2517, @kishorj)
• fix default value in the service annotation doc (#2569, @kishorj)
• Misc minor fixes to docs (#2568, @prasadkatti)
• fix formatting (#2567, @prasadkatti)
• minor fix (#2566, @prasadkatti)
• docs cleanup in ingress spec (#2565, @prasadkatti)

ECR images

• 013241004608.dkr.ecr.us-gov-west-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.3
• 151742754352.dkr.ecr.us-gov-east-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.3
• 558608220178.dkr.ecr.me-south-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.3
• 590381155156.dkr.ecr.eu-south-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.3
• 602401143452.dkr.ecr.ap-northeast-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.3
• 602401143452.dkr.ecr.ap-northeast-2.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.3
• 602401143452.dkr.ecr.ap-northeast-3.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.3
• 602401143452.dkr.ecr.ap-south-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.3
• 602401143452.dkr.ecr.ap-southeast-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.3
• 602401143452.dkr.ecr.ap-southeast-2.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.3
• 602401143452.dkr.ecr.ca-central-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.3
• 602401143452.dkr.ecr.eu-central-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.3
• 602401143452.dkr.ecr.eu-north-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.3
• 602401143452.dkr.ecr.eu-west-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.3
• 602401143452.dkr.ecr.eu-west-2.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.3
• 602401143452.dkr.ecr.eu-west-3.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.3
• 602401143452.dkr.ecr.sa-east-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.3
• 602401143452.dkr.ecr.us-east-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.3
• 602401143452.dkr.ecr.us-east-2.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.3
• 602401143452.dkr.ecr.us-west-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.3
• 602401143452.dkr.ecr.us-west-2.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.3
• 800184023465.dkr.ecr.ap-east-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.3
• 877085696533.dkr.ecr.af-south-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.3
• 918309763551.dkr.ecr.cn-north-1.amazonaws.com.cn/amazon/aws-load-balancer-controller:v2.4.3
• 961992271922.dkr.ecr.cn-northwest-1.amazonaws.com.cn/amazon/aws-load-balancer-controller:v2.4.3

v2.4.2

v2.4.2 (requires Kubernetes 1.19+)

Documentation

Image: docker.io/amazon/aws-alb-ingress-controller:v2.4.2

Thanks to all our contributors! 😊

What's new

• This is a version with minimal changes which merely upgrade the base container image and Golang version.

Changelog since v2.4.1

• update base docker image & Golang (#2657, @M00nF1sh )

ECR images

• 013241004608.dkr.ecr.us-gov-west-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.2
• 151742754352.dkr.ecr.us-gov-east-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.2
• 558608220178.dkr.ecr.me-south-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.2
• 590381155156.dkr.ecr.eu-south-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.2
• 602401143452.dkr.ecr.ap-northeast-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.2
• 602401143452.dkr.ecr.ap-northeast-2.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.2
• 602401143452.dkr.ecr.ap-northeast-3.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.2
• 602401143452.dkr.ecr.ap-south-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.2
• 602401143452.dkr.ecr.ap-southeast-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.2
• 602401143452.dkr.ecr.ap-southeast-2.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.2
• 602401143452.dkr.ecr.ca-central-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.2
• 602401143452.dkr.ecr.eu-central-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.2
• 602401143452.dkr.ecr.eu-north-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.2
• 602401143452.dkr.ecr.eu-west-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.2
• 602401143452.dkr.ecr.eu-west-2.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.2
• 602401143452.dkr.ecr.eu-west-3.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.2
• 602401143452.dkr.ecr.sa-east-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.2
• 602401143452.dkr.ecr.us-east-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.2
• 602401143452.dkr.ecr.us-east-2.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.2
• 602401143452.dkr.ecr.us-west-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.2
• 602401143452.dkr.ecr.us-west-2.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.2
• 800184023465.dkr.ecr.ap-east-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.2
• 877085696533.dkr.ecr.af-south-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.2
• 918309763551.dkr.ecr.cn-north-1.amazonaws.com.cn/amazon/aws-load-balancer-controller:v2.4.2
• 961992271922.dkr.ecr.cn-northwest-1.amazonaws.com.cn/amazon/aws-load-balancer-controller:v2.4.2

v2.4.1

v2.4.1 (requires Kubernetes 1.19+)

Documentation

Image: docker.io/amazon/aws-alb-ingress-controller:v2.4.1

Thanks to all our contributors! 😊

Action Required

🚨 🚨 🚨 The new HelmChart(version 1.4.1) and installation YAML for v2.4.1+ no longer contain the RBAC permission for controller to access Secret resources by default.

• If you don't use the authentication via OIDC IDP feature for any Ingresses in cluster, no action is needed.
• If you do use the authentication via OIDC IDP feature for any Ingress in cluster, you must grant the controller RBAC permission to access Secret resources been referenced. For backwards compatibility, the helm chart provides an option to grant controller RBAC permission to access all Secrets by explicitly setting --set clusterSecretsPermissions.allowAllSecrets=true. However, we recommend configuring separate namespaced Role/RoleBinding to grant controller access to your specific secret resources to strengthen security posture.

What's new

1. Introduce a new featureGate named EndpointsFailOpen: Once enabled, when all eligible nodes get into "ready: unknown" state due to misconfiguration or outage, the controller will ensure fault-tolerance by registering nodes/pods in unknown state as targets to let load balancer still able to handle traffic. This featureGate is not enabled by default in this version and can be enabled via the controller flag --feature-gates=EndpointsFailOpen=true.
2. The controller will no longer require permissions for all Secret resources. If the authentication via OIDC IDP feature is used, you must grant the controller RBAC permission to access the referenced Secret resources.

Bug fixes

1. Fix issue with certificates reconcile so the controller can recover from TooManyCertificates error
2. Fix race condition between pod readiness gate inject and ingress model update
3. Restrict webhook server to TLS 1.3
4. Monitor secrets only if necessary
5. documentation changes

Changelog since v2.4.0

• update iam permissions for TGB only configuration (#2554, @kishorj)
• Update pods with readinessGate as healthy for deleted TGB (#2524, @oliviassss)
• add support to optionally fail-open when all nodes are been isolated (#2546, @M00nF1sh)
• monitor secret resources only if necessary (#2550, @kishorj)
• Upgrade webhook server minimum version to TLS1.3 (#2547, @oliviassss)
• Clarify cluster tag requirement in docs (#2527, @adammw)
• remove undesired certificates before adding new ones (#2528, @oliviassss)
• typo error (#2518, @nimboya)
• Updated test helper script for e2e tests (#2510, @cgchinmay)
• Make e2e LB name test work with clusters that have . in the name (#2516, @olemarkus)
• update docs-publish target to v2.4 (#2513, @kishorj)

ECR images

• 013241004608.dkr.ecr.us-gov-west-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.1
• 151742754352.dkr.ecr.us-gov-east-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.1
• 558608220178.dkr.ecr.me-south-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.1
• 590381155156.dkr.ecr.eu-south-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.1
• 602401143452.dkr.ecr.ap-northeast-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.1
• 602401143452.dkr.ecr.ap-northeast-2.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.1
• 602401143452.dkr.ecr.ap-northeast-3.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.1
• 602401143452.dkr.ecr.ap-south-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.1
• 602401143452.dkr.ecr.ap-southeast-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.1
• 602401143452.dkr.ecr.ap-southeast-2.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.1
• 602401143452.dkr.ecr.ca-central-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.1
• 602401143452.dkr.ecr.eu-central-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.1
• 602401143452.dkr.ecr.eu-north-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.1
• 602401143452.dkr.ecr.eu-west-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.1
• 602401143452.dkr.ecr.eu-west-2.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.1
• 602401143452.dkr.ecr.eu-west-3.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.1
• 602401143452.dkr.ecr.sa-east-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.1
• 602401143452.dkr.ecr.us-east-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.1
• 602401143452.dkr.ecr.us-east-2.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.1
• 602401143452.dkr.ecr.us-west-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.1
• 602401143452.dkr.ecr.us-west-2.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.1
• 800184023465.dkr.ecr.ap-east-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.1
• 877085696533.dkr.ecr.af-south-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.1
• 918309763551.dkr.ecr.cn-north-1.amazonaws.com.cn/amazon/aws-load-balancer-controller:v2.4.1
• 961992271922.dkr.ecr.cn-northwest-1.amazonaws.com.cn/amazon/aws-load-balancer-controller:v2.4.1

v2.4.0

v2.4.0 (requires Kubernetes 1.19+)

Documentation

Image: docker.io/amazon/aws-alb-ingress-controller:v2.4.0

Thanks to all our contributors! 😊

Note

This release uses the new Ingress API version networking.k8s.io/v1 available in kubernetes 1.19 and later releases. As a result, the v2.4.0 and later releases of the aws-load-balancer-controller will not support kubernetes 1.18 and older versions. If you are running the older k8s version, you can either upgrade your cluster or use the v2.3.x version of the controller.

IMPORTANT If you are upgrading the controller from a prior version to v2.4.0, please apply the entire manifest or use helm due to the webhook changes.

For convenience, the v2.4.0 release manifest and the helm chart creates an IngressClass resource named alb by default.

What's new

1. Support for Ingress API version networking.k8s.io/v1
2. Support for service spec.loadBalancerClass
3. Option to disable security group rules management for NLB
4. Merge tags between kubernetes ingress and services
5. Helm chart create IngressClass and IngressClassParams by default
6. Add servicemonitor to helm chart
7. Helm chart keepTLSSecret is true by default
8. Provide a new feature gate ServiceTypeLoadBalancerOnly which can optionally limit the controller to service of type LoadBalancer

Bug fixes

1. Fix potentially slow resource reconciliation by caching AWS shield subscription state to mitigate API throttling issues
2. Add default tags to the backend Security Group
3. Ignore invalid ARN error while deleting TargetGroupBinding
4. Documentation fixes

Changelog since v2.3.1

• doc updates for v2.4.0 (#2506, @kishorj)
• change IngressClassParams default name to alb (#2508, @kishorj)
• Helm chart for v2.4.0 release (#2503, @kishorj)
• Upgrade aws-sdk-go to 1.42.27 (#2500, @johngmyers)
• Add an option to disable SG rules management for NLB (#2481, @kishorj)
• make keepTLSSecret true by default (#2483, @kishorj)
• add support for loadBalancerClass (#2489, @kishorj)
• add documentation for manage-backend-security-group-rules (#2486, @kishorj)
• fix typo in annotations doc (#2482, @kishorj)
• Adding support of ingressClassParams in helm charts (#2478, @haouc)
• Merge tags from alb.ingress.kubernetes.io/tags (#2480, @oliviassss)
• feat(chart): add servicemonitor (#2335, @stevehipwell)
• Fetch aws-load-balancer-controller logs before deleting (#2436, @cgchinmay)
• check invalid TG ARN when deleting TGB(#2454, @oliviassss )
• Upgrade echoserver to 2.5 (#2452, @johngmyers)
• Format AWS policy JSON document for consistency (#2447, @orsenthil)
• Add default tags to backend SG (#2425, @kishorj)
• helm: Remove unnecessary admissionregistration.k8s.io/v1beta1 (#2443, @johngmyers)
• helm: Create IngressClass by default (#2442, @johngmyers)
• Add a separate example for dualstack ALB (#2445, @kishorj)
• Update Ingress APIVersion to networking.k8s.io/v1 (#2433, @johngmyers)
• e2e: Use Helm chart from the commit (#2435, @johngmyers)
• updated Ingress API version in Documentation example (#2429, @NIKU-SINGH)
• e2e test helper script (#2246, @cgchinmay)
• Add workflow to auto sync helm chart to eks-charts (#2418, @oliviassss)
• Typo (#2416, @stensonb)
• Enable setting custom objectSelector for webhook (#2407, @Shreya027)
• cache AWS shield subscription state for 2 hour (#2408, @M00nF1sh)

ECR images

• 013241004608.dkr.ecr.us-gov-west-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.0
• 151742754352.dkr.ecr.us-gov-east-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.0
• 558608220178.dkr.ecr.me-south-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.0
• 590381155156.dkr.ecr.eu-south-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.0
• 602401143452.dkr.ecr.ap-northeast-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.0
• 602401143452.dkr.ecr.ap-northeast-2.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.0
• 602401143452.dkr.ecr.ap-northeast-3.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.0
• 602401143452.dkr.ecr.ap-south-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.0
• 602401143452.dkr.ecr.ap-southeast-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.0
• 602401143452.dkr.ecr.ap-southeast-2.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.0
• 602401143452.dkr.ecr.ca-central-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.0
• 602401143452.dkr.ecr.eu-central-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.0
• 602401143452.dkr.ecr.eu-north-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.0
• 602401143452.dkr.ecr.eu-west-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.0
• 602401143452.dkr.ecr.eu-west-2.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.0
• 602401143452.dkr.ecr.eu-west-3.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.0
• 602401143452.dkr.ecr.sa-east-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.0
• 602401143452.dkr.ecr.us-east-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.0
• 602401143452.dkr.ecr.us-east-2.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.0
• 602401143452.dkr.ecr.us-west-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.0
• 602401143452.dkr.ecr.us-west-2.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.0
• 800184023465.dkr.ecr.ap-east-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.0
• 877085696533.dkr.ecr.af-south-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.4.0
• 918309763551.dkr.ecr.cn-north-1.amazonaws.com.cn/amazon/aws-load-balancer-controller:v2.4.0
• 961992271922.dkr.ecr.cn-northwest-1.amazonaws.com.cn/amazon/aws-load-balancer-controller:v2.4.0

v2.3.1

v2.3.1 (requires Kubernetes 1.16+)

Documentation

Image: docker.io/amazon/aws-alb-ingress-controller:v2.3.1

Thanks to all our contributors! 😊

Action Required

N/A

What's new

1. Support NLB IPv6 target groups
2. Allow targetgroup endpoints outside the ELB VPC
3. Add support for feature gates to enable/disable features
4. Disable listener and listener rules tagging via ListenerRulesTagging feature gate
5. Disable weighted target groups via WeightedTargetGroups feature gate

Bug fixes

1. Fix restricted SG rules for named target port
2. ALB COIP drift check logs drifts instead of error
3. Remove ip-address-type dualstack annotation from 2048 example
4. Webhook server use TLS 1.2 as the minimum version
5. Fix listener utils error handling
6. Documentation fixes

Changelog since v2.3.0

• Update golang to 1.17 (#2401, @kishorj)
• Set a namespace on the helm PodDisruptionBudget template(#2391, @Dutchy-)
• implement dnsPolicy in aws-load-balancer-controller chart (#2324, @notjames)
• chore: clarify how to get internal NLB (#2356, @froblesmartin)
• fix listener utils error handling (#2397, @kishorj )
• doc improvement for IAM policy restriction (#2390, @kishorj)
• webhook server use TLS 1.2 as minimum version (#2394, @kishorj)
• call subnet auto discovery when lb scheme changes (#2387, @oliviassss)
• Minimalist IAM permissions for TargetGroupBinding [documentation] (#2385, @marcosdiez)
• doc update for subnet auto-discovery (#2374, @oliviassss)
• Add support for NLB IPv6 targets groups (#2332, @kishorj)
• support IPv6 Pods during AZ detection (#2375, @M00nF1sh)
• Adding supports for unweighted target group through feature gate and checking SSL policy availability. (#2380, @haouc)
• doc: fix iam_policy.json url for v2.3.0 (#2378, @JeremJR)
• NLB Instance mode guide referenced the wrong annotation (#2376, @TBBle)
• add feature gate to enable or disable listener rules tagging (#2342, @oliviassss)
• Allow TargetGroup endpoints outside the ELB VPC (#1862, @shoekstra)
• Update anchor link of Nodeport from #nodeport to #type-nodeport (#2348, @sandipanpanda)
• Whitespace changes for mkdocs rendering (#2333, @kishorj)
• remove ip-address-type dualstack annotation from 2048 example (#2331, @kishorj)
• make COIP drift check logs drifts instead of error out (#2329, @M00nF1sh)
• Fix restricted SG rules for named target port (#2327, @kishorj)
• Add documentation on how to add load balancer attributes to Ingress Class Params (#2321, @inih)
• Update service annotations live docs (#2320, @kishorj)

ECR images

• 013241004608.dkr.ecr.us-gov-west-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.3.1
• 151742754352.dkr.ecr.us-gov-east-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.3.1
• 558608220178.dkr.ecr.me-south-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.3.1
• 590381155156.dkr.ecr.eu-south-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.3.1
• 602401143452.dkr.ecr.ap-northeast-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.3.1
• 602401143452.dkr.ecr.ap-northeast-2.amazonaws.com/amazon/aws-load-balancer-controller:v2.3.1
• 602401143452.dkr.ecr.ap-northeast-3.amazonaws.com/amazon/aws-load-balancer-controller:v2.3.1
• 602401143452.dkr.ecr.ap-south-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.3.1
• 602401143452.dkr.ecr.ap-southeast-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.3.1
• 602401143452.dkr.ecr.ap-southeast-2.amazonaws.com/amazon/aws-load-balancer-controller:v2.3.1
• 602401143452.dkr.ecr.ca-central-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.3.1
• 602401143452.dkr.ecr.eu-central-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.3.1
• 602401143452.dkr.ecr.eu-north-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.3.1
• 602401143452.dkr.ecr.eu-west-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.3.1
• 602401143452.dkr.ecr.eu-west-2.amazonaws.com/amazon/aws-load-balancer-controller:v2.3.1
• 602401143452.dkr.ecr.eu-west-3.amazonaws.com/amazon/aws-load-balancer-controller:v2.3.1
• 602401143452.dkr.ecr.sa-east-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.3.1
• 602401143452.dkr.ecr.us-east-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.3.1
• 602401143452.dkr.ecr.us-east-2.amazonaws.com/amazon/aws-load-balancer-controller:v2.3.1
• 602401143452.dkr.ecr.us-west-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.3.1
• 602401143452.dkr.ecr.us-west-2.amazonaws.com/amazon/aws-load-balancer-controller:v2.3.1
• 800184023465.dkr.ecr.ap-east-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.3.1
• 877085696533.dkr.ecr.af-south-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.3.1
• 918309763551.dkr.ecr.cn-north-1.amazonaws.com.cn/amazon/aws-load-balancer-controller:v2.3.1
• 961992271922.dkr.ecr.cn-northwest-1.amazonaws.com.cn/amazon/aws-load-balancer-controller:v2.3.1

v2.3.0

v2.3.0 (requires Kubernetes 1.16+)

Documentation

Image: docker.io/amazon/aws-alb-ingress-controller:v2.3.0

Thanks to all our contributors! 😊

Action Required

1. New IAM Permissions needed for IPv6 clusters: sample policy, sample policy for cn, sample policy for gov-cloud
2. New RBAC permissions needed (included in latest yaml/helm chart)
3. CRD/Webhook updates needed (included in latest yaml/helm chart)
4. Included yaml manifests use cert-manager apiversion v1. You need to update cert-manager to v1.5.3 or later if you install via yaml manifests or enable cert-manager for helm chart

Additional Note

This release introduces optimized security group rules for ALB. The controller uses a shared security group across multiple ALBs in the cluster to allow access to your application pods. As a result, your existing ALBs get updated on controller upgrade. There is a possible time window during reconfiguration where your client traffic might get impacted. We recommend upgrading the controller during a maintenance window.

If you don't prefer the controller create an additional security group, you can either specify a backend security group via the --backend-security-group controller flag, or revert to the previous behavior by setting the controller flag --enable-backend-security-group to false. If you install the helm chart, you can set the desired configuration via enableBackendSecurityGroup and backendSecurityGroup values.

What's new

1. Improved security groups handling
2. ALB IPv6 target groups
3. Helm v3 chart
4. Support for Endpointslices
5. Upgrade controller runtime, k8s dependencies
6. Use admission/v1
7. Update to use golang v1.16.3

Enhancements

1. IngressClassParams support for load balancer attributes
2. Specify NLB attributes via annotation, support for NLB deletion protection
3. Restrict subnet auto-discovery to new LB creation for ALB/NLB
4. Discover subnets based on available IP addresses
5. Filter target group and load balancers by VPC ID
6. Handling of deletion protection configured via annotation
7. Custom AWS endpoints configuration
8. Port range restriction for SG rules
9. Discover AWS region from environment configuration
10. Documentation changes

Helm chart

1. Helm v3 chart
2. Use pdb/v1 if available
3. Reuse existing TLS secrets
4. cert-manager apiversion v1
5. optional serviceAnnotations
6. specifying TLS certs/key for webhook

Changelog since v2.2.4

• Add support for ALB IPv6 target groups (#2284, @kishorj)
• add utilities to help write e2e tests and a few basic e2e tests cases (#2294, @M00nF1sh)
• provide scoped down IAM permissions example (#2283, @kishorj)
• Refactor custom AWS endpoint resolver (#2270, @kishorj)
• fix sdk override script for linux platform (#2280, @kishorj)
• update ssl redirect documentation (#2274, @kishorj)
• Reject custom load balancer name longer than 32 characters (#2295, @kishorj)
• modify .Capabilities.APIVersions.Has for pdb (#2293, @cw-sakamoto)
• fix typo in service annotations (#2290, @neha-viswanathan)
• Update documentation site to show grpc example tutorial (#2277, @brianannis)
• doc: Update configuration notes for working with IMDSv2 metadata server (#2243, @alexku7)
• Enable Helm chart to reuse existing TLS secrets, use v3 charts (#2264, @oliviassss)
• Bump pdb apiVersion to v1 (#2192, @Evalle)
• Add parameter to create IngressClass Resource (#2248,@lazouz)
• Add code for acquiring AWS region from env (#2217, @Shreya027)
• Support optimized security group rules for ALB (#2205, @kishorj)
• cert-manager apiversion to v1 (#2189, @cw-sakamoto)
• Fix documentation edit link to correct repo (#2267, @Yasumoto)
• doc: Fix typo in aws-load-balancer-controller README (#2268, @bhops)
• Clarify helm installation when using IAM roles or not (#2265, @Yasumoto)
• Fix typo in service annotations guide (#2262, @jeremydonahue)
• Add port range restriction for SG (#2236, @oliviassss)
• Add custom AWS endpoints configuration (#2179, @papigers)
• Create optional serviceAnnotations value in helm chart (#2171, @jwenz723)
• Add "--region" parameter of eksctl CLI (#2227, @davidshtian)
• EndpointSlice support for IP target groups (#2169, @harivall)
• Fix typo in README.md (#2223, @PascalBourdier)
• Support specifying TLS certs/key for webhook in helm chart (#2198, @agaffney)
• Set maximum length for custom load-balancer-name (#2195, @bnutt)
• add load balancer attributes support for IngressClassParams (#2190, @oliviassss)
• use minimal base docker image (#2196, @M00nF1sh)
• update docs for deletion_protection (#2181, @oliviassss)
• update docs about multiple controller deployment (#2186, @M00nF1sh)
• Force delete lb when deletion_protection is disabled (#2172, @oliviassss)
• Add code for filtering target group & load balancers by VPC ID (#2157, @Shreya027)
• Fix the regression of IP mode support for fargate pods (#2158, @M00nF1sh)
• Improve contributing documentation (#2155, @akuzni2)
• Discovery subnets by available ip addresses (#2146, @oliviassss)
• Fix typo (#2153, @joedborg)
• alpn-policy: Don't require TLS target groups (#2147, @iAnomaly)
• add support for pods supported by IPv4Prefix on ENI (#2137, @M00nF1sh)
• Update repo name to load-balancer (#2140, @tyron)
• Add deployment update strategy to aws-load-balancer-controller (#2130, @kirrmann)
• Restrict subnet auto-discovery to new LB creation on service side (#2129, @oliviassss)
• Clean up extra spaces (#2121,@jayonlau)
• Clean up extra spaces (#2120,@jayonlau)
• Restrict subnet auto-discovery to new LB creation only (#2125, @oliviassss)
• Docs: Document Reconciliation Behaviour When Deletion Protection is Enabled. (#2119, @korenyoni)
• Add support for AWS SDK override ([#2114](https://github.com/kubernetes-sigs/aws-load-balancer-cont...

v2.2.4

v2.2.4 (requires Kubernetes 1.16+)

Documentation

Image: docker.io/amazon/aws-alb-ingress-controller:v2.2.4

Thanks to all our contributors! 😊

Action Required

N/A

Additional Notes:

1. We switch to use a minimal base docker image that only contains necessary dependencies and don't have shell binaries.(prior to this release, AmazonLinux2 was used as base docker image)

Changelog since v2.2.3

• use minimal base docker image#2197, @M00nF1sh )

ECR images

• 013241004608.dkr.ecr.us-gov-west-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.2.4
• 151742754352.dkr.ecr.us-gov-east-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.2.4
• 558608220178.dkr.ecr.me-south-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.2.4
• 590381155156.dkr.ecr.eu-south-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.2.4
• 602401143452.dkr.ecr.ap-northeast-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.2.4
• 602401143452.dkr.ecr.ap-northeast-2.amazonaws.com/amazon/aws-load-balancer-controller:v2.2.4
• 602401143452.dkr.ecr.ap-northeast-3.amazonaws.com/amazon/aws-load-balancer-controller:v2.2.4
• 602401143452.dkr.ecr.ap-south-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.2.4
• 602401143452.dkr.ecr.ap-southeast-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.2.4
• 602401143452.dkr.ecr.ap-southeast-2.amazonaws.com/amazon/aws-load-balancer-controller:v2.2.4
• 602401143452.dkr.ecr.ca-central-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.2.4
• 602401143452.dkr.ecr.eu-central-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.2.4
• 602401143452.dkr.ecr.eu-north-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.2.4
• 602401143452.dkr.ecr.eu-west-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.2.4
• 602401143452.dkr.ecr.eu-west-2.amazonaws.com/amazon/aws-load-balancer-controller:v2.2.4
• 602401143452.dkr.ecr.eu-west-3.amazonaws.com/amazon/aws-load-balancer-controller:v2.2.4
• 602401143452.dkr.ecr.sa-east-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.2.4
• 602401143452.dkr.ecr.us-east-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.2.4
• 602401143452.dkr.ecr.us-east-2.amazonaws.com/amazon/aws-load-balancer-controller:v2.2.4
• 602401143452.dkr.ecr.us-west-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.2.4
• 602401143452.dkr.ecr.us-west-2.amazonaws.com/amazon/aws-load-balancer-controller:v2.2.4
• 800184023465.dkr.ecr.ap-east-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.2.4
• 877085696533.dkr.ecr.af-south-1.amazonaws.com/amazon/aws-load-balancer-controller:v2.2.4
• 918309763551.dkr.ecr.cn-north-1.amazonaws.com.cn/amazon/aws-load-balancer-controller:v2.2.4
• 961992271922.dkr.ecr.cn-northwest-1.amazonaws.com.cn/amazon/aws-load-balancer-controller:v2.2.4