Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Multiple Ingress on GKE
Search
Gavin Zhou
April 21, 2017
Technology
0
1.8k
Multiple Ingress on GKE
Multiple Ingress traefik & nginx on GKE
Gavin Zhou
April 21, 2017
Tweet
Share
More Decks by Gavin Zhou
See All by Gavin Zhou
Prometheus Operator
gavinzhou
3
1.2k
Other ingress voyager
gavinzhou
0
170
kubernetes chatops
gavinzhou
0
560
Building Minimal Docker Containers
gavinzhou
0
1.2k
Other Decks in Technology
See All in Technology
IoTシステム開発の複雑さを低減するための統合的アーキテクチャ
kentaro
1
120
Pwned Labsのすゝめ
ken5scal
2
450
AI自体のOps 〜LLMアプリの運用、AWSサービスとOSSの使い分け〜
minorun365
PRO
3
170
クラウド関連のインシデントケースを収集して見えてきたもの
lhazy
8
1.2k
1行のコードから社会課題の解決へ: EMの探究、事業・技術・組織を紡ぐ実践知 / EM Conf 2025
9ma3r
11
3.9k
生成AI “再”入門 2025年春@WIRED TUESDAY EDITOR'S LOUNGE
kajikent
0
120
IAMのマニアックな話2025
nrinetcom
PRO
4
950
AIエージェント入門
minorun365
PRO
32
18k
Oracle Database Technology Night #87-1 : Exadata Database Service on Exascale Infrastructure(ExaDB-XS)サービス詳細
oracle4engineer
PRO
1
180
データエンジニアリング領域におけるDuckDBのユースケース
chanyou0311
9
2.2k
Aurora PostgreSQLがCloudWatch Logsに 出力するログの課金を削減してみる #jawsdays2025
non97
1
220
分解して理解する Aspire
nenonaninu
2
1.1k
Featured
See All Featured
Making Projects Easy
brettharned
116
6k
GraphQLの誤解/rethinking-graphql
sonatard
68
10k
Fireside Chat
paigeccino
34
3.2k
Practical Orchestrator
shlominoach
186
10k
Exploring the Power of Turbo Streams & Action Cable | RailsConf2023
kevinliebholz
30
4.6k
Refactoring Trust on Your Teams (GOTO; Chicago 2020)
rmw
33
2.8k
StorybookのUI Testing Handbookを読んだ
zakiyama
28
5.5k
It's Worth the Effort
3n
184
28k
Building Better People: How to give real-time feedback that sticks.
wjessup
367
19k
Embracing the Ebb and Flow
colly
84
4.6k
How GitHub (no longer) Works
holman
314
140k
Visualizing Your Data: Incorporating Mongo into Loggly Infrastructure
mongodb
45
9.4k
Transcript
Multiple Ingress on GKE Orangesys Inc.
$Who am I Orangesys Inc. Tachibana Shuji Twitter @gavinzhm https://github.com/orangesys
Running
Orangesys Inc. SaaS監視システム @orangesysio https://orangesys.io
None
None
Orangesys • Kubernetes on GKE • OpsDev -> NoOps Architecture
Architecture: Orangesys > Kubernetes Apigateway Namespace Cloud Load Balancing Standard
Devices HTTPS Browser Client Production Namespace Kube-system Namespace Tiller Replication Controller Grafana Container Engine Replication Controller Influxdb Container Engine Replication Controller Corporate Site App Engine Autoscaling Orangesys Firebase Autoscaling Monitoring Namespace Prometheus RC Influxdb RC Grafana RC Opsbot Namespace Kubebot RC K8s-event RC Stripe Server Api Container Engine Replication Controller PostgresSQL Container Engine Replication Controller MariaDb Container Engine Replication Controller Nginx Container Engine Replication Controller Traefik Container Engine Replication Controller Server Telegraf Ingress Container Engine Replication Controller Kong ApiGateway Container Engine Replication Controller Kubenetes API Replication Controller SSL Cert Bot Replication Controller Orange Api Container Engine Replication Controller
Technology Stack
Agenda • Traefik ingress • Nginx ingress
Why other ingress?! • Wildcard Host not support • Multi
TLS not support • Cross-namespace not support • http -> https redirect • GCPLB、20$/m
Traefik ingress 設定簡単、監視 Dashboardがある
Nginx ingress • Basic Auth support • Rewrite support •
Redirect support
Topic • TLS secret 名前は tls.crt/tls.key • Ingress http通信禁止できる、redirectできない ◦ ingress.kubernetes.io/ssl-redirect:
"false" • Kubernetes Certificate Managerを利用すると、letsencrypt証明証設定が簡単 • Helm https://github.com/orangesys
gavinzhou
kentaro
ken5scal
minorun365
lhazy
9ma3r
kajikent
nrinetcom
oracle4engineer
chanyou0311
non97
nenonaninu
brettharned
sonatard
paigeccino
shlominoach
kevinliebholz
rmw
zakiyama
3n
wjessup
colly
holman
mongodb
