Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Multiple Ingress on GKE
Search
Sponsored
·
SiteGround - Reliable hosting with speed, security, and support you can count on.
→
Gavin Zhou
April 21, 2017
Technology
0
1.8k
Multiple Ingress on GKE
Multiple Ingress traefik & nginx on GKE
Gavin Zhou
April 21, 2017
Tweet
Share
More Decks by Gavin Zhou
See All by Gavin Zhou
Prometheus Operator
gavinzhou
3
1.3k
Other ingress voyager
gavinzhou
0
190
kubernetes chatops
gavinzhou
0
620
Building Minimal Docker Containers
gavinzhou
0
1.3k
Other Decks in Technology
See All in Technology
A Casual Introduction to RISC-V
omasanori
0
380
Windows ファイル共有(SMB)を再確認する
murachiakira
PRO
0
180
会社紹介資料 / Sansan Company Profile
sansan33
PRO
16
410k
内製AIチャットボットで学んだDatadog LLM Observability活用術
mkdev10
0
130
僕、S3 シンプルって名前だけど全然シンプルじゃありません よろしくお願いします
yama3133
1
230
形式手法特論:SMT ソルバで解く認可ポリシの静的解析 #kernelvm / Kernel VM Study Tsukuba No3
ytaka23
1
560
Go標準パッケージのI/O処理をながめる
matumoto
0
230
AI時代のSaaSとETL
shoe116
1
190
(Test) ai-meetup slide creation
oikon48
3
460
プラットフォームエンジニアリングはAI時代の開発者をどう救うのか
jacopen
7
3.9k
ガバメントクラウドにおけるAWSの長期継続割引について
takeda_h
2
5.3k
Claude Code のコード品質がばらつくので AI に品質保証させる仕組みを作った話 / A story about building a mechanism to have AI ensure quality, because the code quality from Claude Code was inconsistent
nrslib
13
8.6k
Featured
See All Featured
Navigating Team Friction
lara
192
16k
Navigating Weather and Climate Data
rabernat
0
140
Principles of Awesome APIs and How to Build Them.
keavy
128
17k
Visualization
eitanlees
150
17k
The Invisible Side of Design
smashingmag
302
51k
First, design no harm
axbom
PRO
2
1.1k
Building the Perfect Custom Keyboard
takai
2
710
How to train your dragon (web standard)
notwaldorf
97
6.6k
The Power of CSS Pseudo Elements
geoffreycrofte
82
6.2k
Accessibility Awareness
sabderemane
0
82
Lightning Talk: Beautiful Slides for Beginners
inesmontani
PRO
1
490
The Cult of Friendly URLs
andyhume
79
6.8k
Transcript
Multiple Ingress on GKE Orangesys Inc.
$Who am I Orangesys Inc. Tachibana Shuji Twitter @gavinzhm https://github.com/orangesys
Running
Orangesys Inc. SaaS監視システム @orangesysio https://orangesys.io
None
None
Orangesys • Kubernetes on GKE • OpsDev -> NoOps Architecture
Architecture: Orangesys > Kubernetes Apigateway Namespace Cloud Load Balancing Standard
Devices HTTPS Browser Client Production Namespace Kube-system Namespace Tiller Replication Controller Grafana Container Engine Replication Controller Influxdb Container Engine Replication Controller Corporate Site App Engine Autoscaling Orangesys Firebase Autoscaling Monitoring Namespace Prometheus RC Influxdb RC Grafana RC Opsbot Namespace Kubebot RC K8s-event RC Stripe Server Api Container Engine Replication Controller PostgresSQL Container Engine Replication Controller MariaDb Container Engine Replication Controller Nginx Container Engine Replication Controller Traefik Container Engine Replication Controller Server Telegraf Ingress Container Engine Replication Controller Kong ApiGateway Container Engine Replication Controller Kubenetes API Replication Controller SSL Cert Bot Replication Controller Orange Api Container Engine Replication Controller
Technology Stack
Agenda • Traefik ingress • Nginx ingress
Why other ingress?! • Wildcard Host not support • Multi
TLS not support • Cross-namespace not support • http -> https redirect • GCPLB、20$/m
Traefik ingress 設定簡単、監視 Dashboardがある
Nginx ingress • Basic Auth support • Rewrite support •
Redirect support
Topic • TLS secret 名前は tls.crt/tls.key • Ingress http通信禁止できる、redirectできない ◦ ingress.kubernetes.io/ssl-redirect:
"false" • Kubernetes Certificate Managerを利用すると、letsencrypt証明証設定が簡単 • Helm https://github.com/orangesys
SiteGround - Reliable hosting with speed, security, and support you can count on.
gavinzhou
omasanori
murachiakira
sansan33
mkdev10
yama3133
ytaka23
matumoto
shoe116
oikon48
jacopen
takeda_h
nrslib
lara
rabernat
keavy
eitanlees
smashingmag
axbom
takai
notwaldorf
geoffreycrofte
sabderemane
inesmontani
andyhume
