nginx 入口控制器無法訪問后端服務?
[英]nginx ingress controller don't reach backend service?
問題描述
我目前正在嘗試通過入口控制器公開 kubernetes 服務,但我似乎不能這樣做? 主機/路徑從未解析為我想要使用的 clusterIp 和端口的奇怪原因是誰,即使這應該通過我的入口控制器和資源來解決?...
apiVersion: v1
kind: Service
metadata:
name: hello-kubernetes
spec:
type: LoadBalancer
ports:
- port: 80
targetPort: 8080
selector:
app: hello-kubernetes
---
apiVersion: apps/v1
kind: Deployment
metadata:
name: hello-kubernetes
spec:
replicas: 3
selector:
matchLabels:
app: hello-kubernetes
template:
metadata:
labels:
app: hello-kubernetes
spec:
containers:
- name: hello-kubernetes
image: paulbouwer/hello-kubernetes:1.5
ports:
- containerPort: 8080
---
apiVersion: v1
kind: ConfigMap
metadata:
name: nginx-ingress-controller-conf
---
apiVersion: extensions/v1beta1
kind: Deployment
metadata:
name: nginx-ingress-controller
namespace: default
spec:
replicas: 1
revisionHistoryLimit: 3
template:
metadata:
labels:
app: nginx-ingress-lb
spec:
terminationGracePeriodSeconds: 60
serviceAccount: nginx
containers:
- name: nginx-ingress-controller
image: quay.io/kubernetes-ingress-controller/nginx-ingress-controller:0.9.0
imagePullPolicy: Always
readinessProbe:
httpGet:
path: /healthz
port: 10254
scheme: HTTP
livenessProbe:
httpGet:
path: /healthz
port: 10254
scheme: HTTP
initialDelaySeconds: 10
timeoutSeconds: 5
args:
- /nginx-ingress-controller
- --default-backend-service=$(POD_NAMESPACE)/default-backend-service
- --configmap=$(POD_NAMESPACE)/nginx-ingress-controller-conf
- --v=2
env:
- name: POD_NAME
valueFrom:
fieldRef:
fieldPath: metadata.name
- name: POD_NAMESPACE
valueFrom:
fieldRef:
fieldPath: metadata.namespace
ports:
- name: http
containerPort: 80
- name: https
containerPort: 443
---
apiVersion: v1
kind: Service
metadata:
name: nginx-ingress
spec:
type: NodePort
ports:
- port: 80
targetPort: 80
name: http
- port: 443
targetPort: 443
name: https
selector:
app: nginx-ingress
---
apiVersion: v1
kind: ServiceAccount
metadata:
name: nginx
---
kind: ClusterRole
apiVersion: rbac.authorization.k8s.io/v1beta1
metadata:
name: nginx-role
rules:
- apiGroups:
- ""
resources:
- configmaps
- endpoints
- nodes
- pods
- secrets
verbs:
- list
- watch
- apiGroups:
- ""
resources:
- nodes
verbs:
- get
- apiGroups:
- ""
resources:
- services
verbs:
- get
- list
- update
- watch
- apiGroups:
- extensions
resources:
- ingresses
verbs:
- get
- list
- watch
- apiGroups:
- ""
resources:
- events
verbs:
- create
- patch
- apiGroups:
- extensions
resources:
- ingresses/status
verbs:
- update
---
kind: ClusterRoleBinding
apiVersion: rbac.authorization.k8s.io/v1beta1
metadata:
name: nginx-role
namespace: default
roleRef:
apiGroup: rbac.authorization.k8s.io
kind: ClusterRole
name: nginx-role
subjects:
- kind: ServiceAccount
name: nginx
namespace: default
---
#Ingress ressource
apiVersion: extensions/v1beta1
kind: Ingress
metadata:
name: ingress-hello
spec:
rules:
- host: dev.hello.com
http:
paths:
- backend:
serviceName: hello-kubernetes
servicePort: 80
---
##Default backend
apiVersion: v1
kind: Service
metadata:
name: default-backend-service
labels:
app: default-backend
spec:
ports:
- port: 80
protocol: TCP
targetPort: 8080
selector:
app: default-backend
---
apiVersion: apps/v1
kind: StatefulSet
metadata:
name: default-backend
labels:
app: default-http-backend
spec:
selector:
matchLabels:
app: default-backend
serviceName: default-backend-service
replicas: 2
template:
metadata:
labels:
app: default-backend
spec:
terminationGracePeriodSeconds: 60
containers:
- name: default-backend
image: gcr.io/google_containers/defaultbackend:1.0
livenessProbe:
httpGet:
path: /healthz
port: 8080
scheme: HTTP
initialDelaySeconds: 30
timeoutSeconds: 5
ports:
- containerPort: 8080
resources:
limits:
cpu: 10m
memory: 20Mi
requests:
cpu: 10m
memory: 20Mi
---
我試圖制作一個 MVP - 但由於某種原因我無法解析路徑dev.hello.com我想用它來告訴入口我想連接哪個服務......但由於某種原因,這永遠不會解決一個 IP 地址 - 它似乎沒有命中任何東西?
為什么? 這是設置不正確嗎?
2 個解決方案
解決方案1
0 2020-01-17 13:01:40
hello-kubernetes 的服務不應該是LoadBalancer類型,因為您希望入口作為 Loadbalancer 工作。 所以把hello-kubernetes的服務改成ClusterIP 。
apiVersion: v1
kind: Service
metadata:
name: hello-kubernetes
spec:
type: ClusterIP
ports:
- port: 80
targetPort: 8080
selector:
app: hello-kubernetes
解決方案2
0 2020-01-20 10:51:55
很難理解你到底想要什么。 你應該更准確地知道你到底想要什么。
1.使用 ClusterIP 的 Ingress。
就像 Arghya Sadhu 寫的那樣,當您使用Ingress您不需要指定LoadBalancer 。
2.使用NodePort Ingress
請記住,您還可以將NodePort與Ingress NodePort使用。 好的解釋和示例可以在這里找到。
3. Ingress YAML 根據官方Kubernetes Docs 的最小 Ingress 資源如下所示:
apiVersion: networking.k8s.io/v1beta1
kind: Ingress
metadata:
name: test-ingress
annotations:
nginx.ingress.kubernetes.io/rewrite-target: /
spec:
rules:
- http:
paths:
- path: /testpath
backend:
serviceName: test
servicePort: 80
在您的 Ingress 中,我找不到spec.rules.http.paths.path 。
4. LoadBalancer的IP
同樣非常重要的是您的集群在哪里。 如果您使用 GKE、AWS、AZURE 等On-Prem部署,您的LoadBalancer將自動獲取externalIP ,允許您從外部連接到您的集群。 但是,如果您使用本地機器,則需要使用MetalLB 。
此外,請查看 kubernetes docs about Connect a Front End to a Back End Using a Service 。
另請查看本教程,它可能對您有所幫助。
NGINX Ingress Controller 和默認后端為 nginx 服務的 Ingress 有什么區別?
[英]What is the difference between NGINX Ingress Controller and Ingress with default backend as nginx service?
更新 ingress-nginx-controller ConfigMap 以將客戶端 IP 傳遞給后端服務
[英]Updating ingress-nginx-controller ConfigMap to Pass Client IP to Backend Service
Azure日志分析不會在Azure Kubernetes服務上檢索NGINX入口的日志
[英]Azure Log Analytics don't retrieve log of NGINX Ingress on Azure Kubernetes Service
HTTPS重定向不適用於Nginx-ingress-controller的默認后端
[英]HTTPS redirect not working for default backend of nginx-ingress-controller
NGINX 入口 controller 返回 502,后端應用程序 pod 中沒有日志
[英]NGINX Ingress controller returning 502 with no logs in backend application pod
聲明:本站的技術帖子網頁,遵循CC BY-SA 4.0協議,如果您需要轉載,請注明本站網址或者原文地址。任何問題請咨詢:yoyou2525@163.com.
相關問題
nginx 入口沒有 controller 服務
NGINX Ingress Controller 和默認后端為 nginx 服務的 Ingress 有什么區別?
NGINX入口控制器的默認后端
nginx入口:無法重定向到后端服務
Kubernetes nginx 入口找不到后端服務
更新 ingress-nginx-controller ConfigMap 以將客戶端 IP 傳遞給后端服務
Azure日志分析不會在Azure Kubernetes服務上檢索NGINX入口的日志
HTTPS重定向不適用於Nginx-ingress-controller的默認后端
NGINX 入口 controller 返回 502,后端應用程序 pod 中沒有日志
Nginx 入口找不到服務
相關標簽