Hi, I've been trying to connect kratos and hydra. Kratos is working just fine right now but im getting issues when trying to connect to hydra admin. Hydra woks well by itself but when trying to connect from kratos pod i get the following.

msg=[ERR] GET <http://hydra-admin-service.identity:4434/admin/oauth2/auth/requests/login?login_challenge=cpnmZoTq0nRXOCXctVpTX3wcmxwhTTS8iH7nEYqsVy2jcj4uO5YHQJoKOg25WcpLlH2nsLBFV1hSzi1n6OHI4iDtqfTuV7FFiU-zN-YMk-0FU16zWwXUXC_ZTGNY1f9RNO2dAj9AWY6ZMQVK45L-B4KhUZX0QrPga1Dd5ia813cDQTxcfBZCfvA-> request failed: Get "<http://hydra-admin-service.identity:4434/admin/oauth2/auth/requests/login?login_challenge=cpnmZoTq0nRXOCXc>": dial tcp 100.65.70.239:4434: prohibited IP address: 100.65.70.239 is not a permitted destination (denied by: 100.64.0.0/10) audience=application service_name=Ory Kratos service_version=v1.1.0

But if I do a wget in the container i can get the response. It only happend internally

search for `disallow_private_ip_ranges`: https://www.ory.sh/docs/kratos/reference/configuration

Hey @steep-lamp-91158 Thanks for the answer 🙇 Perhaps I'm misunderstanding something, but even when I configure our Kratos instance with:

clients:
  http:
    disallow_private_ip_ranges: false

(which should be the default), I get the

is not a permitted destination (denied by: 100.64.0.0/10)

errors 🤔 Same if I set this to

true

with some

private_ip_exception_urls

defined. Am I missing something obvious?