stackoom
  简体   繁体   中英

exposing CockroachDB on Kubernetes to public IP

 原文  2017-12-30 21:18:53       kubernetes/ cockroachdb

Question

I have a CockroachDB instance running in a Kubernetes cluster on Google Kubernetes Engine. I am trying to expose port 26257 so I can connect to it from my local machine.

As stated in this answer , port forwarding to the pod will not work.

I have an nginx-ingress controller which is used to map from my domain name paths to services, so I tried to use that:

I changed my db-cockroachdb-public service from ClusterIP to NodePort: 

type: NodePort

I added these lines to my nginx-controller YAML: 

-name: postgresql

nodePort: 30472

port: 26257

protocol: TCP

targetPort: 26257

and these lines to my ingress YAML: 

- host: db.mydomain.com
  http:
    paths:
    - path: /
      backend:
        serviceName: db-cockroachdb-public
        servicePort: 26257

However, I'm unable to connect to the database - connection gets refused. I also tried to disable SSL redirects in the nginx controller, but it still doesn't work.

I also tried a ConfigMap but it didn't do anything: 

https://github.com/kubernetes/ingress-nginx/blob/master/docs/user-guide/exposing-tcp-udp-services.md

2 answers

solution1
 2 ACCPTED  2018-01-02 15:39:11

There are a few ways to fix this. Most are related to changing your ingress configuration or how you're connecting to the service, which I'm not going to go into. Another option is to make port forwarding work to eliminate the need for the ingress machinery.

You can make port forwarding work by modifying the CockroachDB config file slightly. Change the name of the --host flag in the invocation of the Cockroach binary to be --advertise-host instead. That way, the process will listen on localhost in addition to on its hostname, which will make port forwarding work.

edit: To follow up on this, I've switched the default configuration in the CockroachDB repo to use --advertise-host instead of --host , so port forwarding works by default now.

solution2
 0  2018-01-01 23:44:47

I don't know if it technically should work to proxy a CockroachDB through a nginx instance, but your setup fails for another reason. When specifying a servicePort in the rules section, you tell k8s which port is exposed to the service. The mapping itself happens by default to port 80/443, not your desired port. So you should try just to ask port 80 in your case.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Kubernetes is exposing docker interface ip Kubernetes CronJob public IP Exposing service in (GKE) Kubernetes only with internal ip Kubernetes cluster is not exposing external ip as <nodes> Exposing openshift service to aws public ip Is it safe to run kubernetes with public ip? CockroachDB snapshot backups in Kubernetes Exposing kubernetes service using elastic ip address on aws Google Container Engine: Kubernetes is not exposing external IP after creating container Does a Kubernetes Worker Node Public IP change?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM