Azure: configure the properties of load balancer endpoint through annotations

[weinong]

Is this a BUG REPORT or FEATURE REQUEST?:

/kind feature

What happened:

What you expected to happen:
Right now, it's a manual process to update the exposed load balancer endpoint with DNS, NSG, and etc. It could be automated by cloud provider through annotations on service resource, for instance:
azure.io.domainHost: foo which will assign dns foo.westus.cloudapp.azure.com
likewise, if we have

azure.io.nsg:
   name: foo
   access: allow
   sourceAddressPrefix: *
   targetPortRange: 80

Then the nsg of the exposed IP will be configured properly.

How to reproduce it (as minimally and precisely as possible):

Anything else we need to know?:

Environment:

• Kubernetes version (use kubectl version):
• Cloud provider or hardware configuration**: Azure
• OS (e.g. from /etc/os-release):
• Kernel (e.g. uname -a):
• Install tools:
• Others:

[weinong]

/sig azure

[weinong]

@jdumars @anhowe @brendandburns

[jdumars]

/cc @brendandburns

[jdumars]

@weinong does this need to go into the SIG-Azure 1.10 backlog?

[khenidak]

So if the use case to have one service exposed with LB then

1. add type: Load Balancer to the service annotation
2. add service.beta.kubernetes.io/azure-dns-label-name with your dns label to the service

if the use case is to have ingress controller with a DNS label, then the service that exposes the ingress controller to the LB should have the above.

if the use case is to have multiple ingress resources each have a DNS label then use external DNS project. The idea is each ingress resources carries an annotation for DNS label external-dns.alpha.kubernetes.io/hostname which a sub domain on your Azure DNS service.

Can you confirm that this covers the use cases you are looking for? @weinong @dtzar

[dtzar]

@khenidak - Scenario 1 worked for me on a 1.9.1 K8s cluster. Thanks!

[khenidak]

Please close the issue the. :-) Get Outlook for iOS<https://aka.ms/o0ukef>

…

________________________________ From: David Tesar <notifications@github.com> Sent: Thursday, January 25, 2018 12:53:52 PM To: kubernetes/kubernetes Cc: Khaled Henidak (Kal); Mention Subject: Re: [kubernetes/kubernetes] Azure: configure the properties of load balancer endpoint through annotations (#50062) @khenidak<https://eur02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgithub.com%2Fkhenidak&data=02%7C01%7C%7Cb6f20793f48b49aaa58708d56435be86%7C84df9e7fe9f640afb435aaaaaaaaaaaa%7C1%7C0%7C636525104342922073&sdata=dsIP%2FvJzZwCpoWADbJeCTdefiDP528R3OQeVXEPalus%3D&reserved=0> - Scenario 1 worked for me on a 1.9.1 K8s cluster. Thanks! — You are receiving this because you were mentioned. Reply to this email directly, view it on GitHub<https://eur02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgithub.com%2Fkubernetes%2Fkubernetes%2Fissues%2F50062%23issuecomment-360596935&data=02%7C01%7C%7Cb6f20793f48b49aaa58708d56435be86%7C84df9e7fe9f640afb435aaaaaaaaaaaa%7C1%7C0%7C636525104342922073&sdata=okurR5j5nKl17jMZU73Gbm%2FtZw9e61ZsBE5xmicBD%2F8%3D&reserved=0>, or mute the thread<https://eur02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgithub.com%2Fnotifications%2Funsubscribe-auth%2FAKMDQx0rtb2ZyZwFfd8cTn-OWYYS8NK6ks5tOOnfgaJpZM4Or9eb&data=02%7C01%7C%7Cb6f20793f48b49aaa58708d56435be86%7C84df9e7fe9f640afb435aaaaaaaaaaaa%7C1%7C0%7C636525104342922073&sdata=iygFmTiyYEBga0nvKL3680BfQezLoBHRGDiZZBai5Bc%3D&reserved=0>.

[jdumars]

Closing, please feel free to re-open if this occurs again.

[dtzar]

For reference, I created this post which walks people through the scenario: http://ow.ly/Fqge30i1O0U