-
-
Notifications
You must be signed in to change notification settings - Fork 106
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Little help needed for my https deployment on own domain #30
Comments
Sorry for the delay, been very busy with my day job. Maybe you've sorted it out in the meantime, but I recommend you install an ingress controller instead. That way you can have multiple workloads share the same load balancer, so you save some bucks. So instead of creating a service of type LoadBalancer for your workloads, you 1) install an ingress controller like ingress-nginx, 2) create a service of type ClusterIP plus an ingress resource for each workload. |
Forgot to mention that for the certificates the easiest way is to use cert-manager, and configure the ingress resource accordingly. This will use certificates provisioned automatically with Let's Encrypt. |
Thank you for the reply. |
Ok back to the basics because I can't even get it to work on http anymore. Pff
the ingress-nginx.yaml:
then: the result is looking OK, right? But I see 2 of them, I expected 1
When I go to the Hetnzer cloud, I see a loadbalancer with the same IP as shown in External IP. however when I apply the following yaml, with a small change though: default is: and I changed the line to: The deployment is running but I can't see it on my domain. I get an :
What am I missing? PS C:\kluster> kubectl get services
Do I need some annotations or ? |
Correct, one load balancer is for the API server if you have multiple masters, and the other is for the ingress controller (or any other services that provision a load balancer). It looks like you've made progress! Are you sure you've picked the IP of the correct load balancer of nginx and not the one for the API server? Also, try portforwarding the service locally to see if it's a problem with the ingress. |
Closing since there hasn't been an update in a while. |
Ive created a new issue because this one is closed: #41 |
Hi,
first off all:
sorry for the stupid questions, maybe not quite related to what you made but i could really use a little help right now.
I have created the cluster (not via the Docker way) and am trying to use my own (sub)domains in my deployments. on http I get this to work but unfortunately not on https.
I also have to say that the documentation on Hetzner Cloud Controller Manager isn't very good either... I can't find any good instructions on the Internet.
You shared an example of your Service annotations:
but shouldn't these 2 lines be added too?
But when I add the protocol line in the Service, the loadbalancer is crashing in the Hetzner cloud.
Anyway, this is how my whoami.yaml deployment file looks like:
Then at Cloudflare to manage the DNS, I've created an A-record pointing mydomain.com to the IP of the loadbalancer
And a second A-record for whoami.mydomain to the same IP of the loadbalancer. Not sure if both are needed though.
When I apply the deployment a loadbalancer is created and the whoami service gets available at:
but NOT on the https port haha ... Is Let's encrypt not included in the Hetzner Cloud Controller Manager?
Maybe something needs to be set manually in Hetnzer cloud? for example at Loadbalancer, Networking, PUBLIC NETWORK. you can fill in a Reserved DNS name here. But Iam not sure...
Or do I need to Create a certificate in the Hetnzer cloud, and then use the Service annotations?
Thanks in advance for your help, I would really appreciate it
The text was updated successfully, but these errors were encountered: