Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Multiple Ingress on GKE
Search
Gavin Zhou
April 21, 2017
Technology
1.9k
0
Share
Multiple Ingress on GKE
Multiple Ingress traefik & nginx on GKE
Gavin Zhou
April 21, 2017
More Decks by Gavin Zhou
See All by Gavin Zhou
Prometheus Operator
gavinzhou
3
1.3k
Other ingress voyager
gavinzhou
0
190
kubernetes chatops
gavinzhou
0
620
Building Minimal Docker Containers
gavinzhou
0
1.3k
Other Decks in Technology
See All in Technology
Oracle AI Database@Google Cloud:サービス概要のご紹介
oracle4engineer
PRO
6
1.5k
【Gen-AX】20260530開催_JJUG CCC 2026 Spring
genax
0
390
新規事業を牽引する技術選定 〜フルスタックTypeScript開発の実践事例〜
nullnull
2
250
APIテストとは?
nagix
0
170
Databricks における 生成AIガバナンスの実践
taka_aki
1
270
TROCCOで始めるクラウドコストを民主化するためのFinOps
tk3fftk
3
560
Diagnosing performance problems without the guesswork
elenatanasoiu
0
150
Datadog 認定試験の概要と対策
uechishingo
0
230
価格.comをAI駆動で全面刷新する ー 30年分の技術的負債を返し、次の30年の土台をつくる ー / AI Engineering Summit Tokyo 2026
tkyowa
33
34k
long-running-tasks
cipepser
3
460
関西に縁あるMicrosoft MVPsが語るCopilotの未来
kasada
0
1k
AIガバナンス実践 - 生成AIコネクタのデータ漏洩リスクと実務対策
knishioka
0
170
Featured
See All Featured
How GitHub (no longer) Works
holman
316
150k
Building Better People: How to give real-time feedback that sticks.
wjessup
370
20k
So, you think you're a good person
axbom
PRO
2
2k
KATA
mclloyd
PRO
35
15k
How STYLIGHT went responsive
nonsquared
100
6.2k
Agile Leadership in an Agile Organization
kimpetersen
PRO
0
160
Why Our Code Smells
bkeepers
PRO
340
58k
DBのスキルで生き残る技術 - AI時代におけるテーブル設計の勘所
soudai
PRO
65
55k
Java REST API Framework Comparison - PWX 2021
mraible
34
9.3k
Building AI with AI
inesmontani
PRO
1
1k
Building Flexible Design Systems
yeseniaperezcruz
330
40k
Heart Work Chapter 1 - Part 1
lfama
PRO
7
36k
Transcript
Multiple Ingress on GKE Orangesys Inc.
$Who am I Orangesys Inc. Tachibana Shuji Twitter @gavinzhm https://github.com/orangesys
Running
Orangesys Inc. SaaS監視システム @orangesysio https://orangesys.io
None
None
Orangesys • Kubernetes on GKE • OpsDev -> NoOps Architecture
Architecture: Orangesys > Kubernetes Apigateway Namespace Cloud Load Balancing Standard
Devices HTTPS Browser Client Production Namespace Kube-system Namespace Tiller Replication Controller Grafana Container Engine Replication Controller Influxdb Container Engine Replication Controller Corporate Site App Engine Autoscaling Orangesys Firebase Autoscaling Monitoring Namespace Prometheus RC Influxdb RC Grafana RC Opsbot Namespace Kubebot RC K8s-event RC Stripe Server Api Container Engine Replication Controller PostgresSQL Container Engine Replication Controller MariaDb Container Engine Replication Controller Nginx Container Engine Replication Controller Traefik Container Engine Replication Controller Server Telegraf Ingress Container Engine Replication Controller Kong ApiGateway Container Engine Replication Controller Kubenetes API Replication Controller SSL Cert Bot Replication Controller Orange Api Container Engine Replication Controller
Technology Stack
Agenda • Traefik ingress • Nginx ingress
Why other ingress?! • Wildcard Host not support • Multi
TLS not support • Cross-namespace not support • http -> https redirect • GCPLB、20$/m
Traefik ingress 設定簡単、監視 Dashboardがある
Nginx ingress • Basic Auth support • Rewrite support •
Redirect support
Topic • TLS secret 名前は tls.crt/tls.key • Ingress http通信禁止できる、redirectできない ◦ ingress.kubernetes.io/ssl-redirect:
"false" • Kubernetes Certificate Managerを利用すると、letsencrypt証明証設定が簡単 • Helm https://github.com/orangesys
gavinzhou
oracle4engineer
.png){kind=avatar}
genax
nullnull
nagix
taka_aki
tk3fftk
elenatanasoiu
uechishingo
tkyowa
cipepser
kasada
knishioka
holman
wjessup
axbom
mclloyd
nonsquared
kimpetersen
bkeepers
soudai
mraible
inesmontani
yeseniaperezcruz
lfama
