Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Multiple Ingress on GKE
Search
Gavin Zhou
April 21, 2017
Technology
0
1.7k
Multiple Ingress on GKE
Multiple Ingress traefik & nginx on GKE
Gavin Zhou
April 21, 2017
Tweet
Share
More Decks by Gavin Zhou
See All by Gavin Zhou
Prometheus Operator
gavinzhou
3
1.1k
Other ingress voyager
gavinzhou
0
160
kubernetes chatops
gavinzhou
0
490
Building Minimal Docker Containers
gavinzhou
0
1k
Other Decks in Technology
See All in Technology
長期間TiDBを使ってきた話 @ 私たちはなぜNewSQLを使うのかTiDB選定5社が語る選定理由と活用LT / Experiences with TiDB Over Time
chibiegg
2
740
[PlatformCon 24] Platform Orchestrators: The Missing Middle of Internal Developer Platforms?
danielbryantuk
1
180
Oracle Cloud Infrastructure:2024年4月度サービス・アップデート
oracle4engineer
PRO
1
110
シン・Kafka / shin-kafka
oracle4engineer
PRO
7
2.7k
カオナビの利用実績をアウトカムへつなげる旅 / example-of-data-management-startup-in-kaonavi
kaonavi
0
120
開発生産性向上サービスを作るFindyが自分たちで開発生産性を爆上げした組織づくりの歩み / Findy's path to boosting its own development productivity 2024-04-17
ma3tk
3
350
「共通基盤」を超えよ! 今、Platform Engineeringに取り組むべき理由
jacopen
25
5.9k
コンテナセキュリティの基本と脅威への対策
kyohmizu
3
700
転移学習とドメイン適応の基礎
kmatsui
2
570
**強い**エンジニアのなり方 - フィードバックサイクルを勝ち取る / grow one day each day
soudai
62
18k
アプリがつくるNOT A HOTELブランド
hokuts
1
450
入社後初めてのタスクでk8sアップグレードした話.pdf
kkato1
1
380
Featured
See All Featured
Writing Fast Ruby
sferik
620
60k
GraphQLの誤解/rethinking-graphql
sonatard
50
9.2k
Designing with Data
zakiwarfel
95
4.8k
The Straight Up "How To Draw Better" Workshop
denniskardys
227
130k
Put a Button on it: Removing Barriers to Going Fast.
kastner
58
3k
Intergalactic Javascript Robots from Outer Space
tanoku
266
26k
Making the Leap to Tech Lead
cromwellryan
123
8.5k
How GitHub Uses GitHub to Build GitHub
holman
468
290k
The Pragmatic Product Professional
lauravandoore
24
5.8k
The Power of CSS Pseudo Elements
geoffreycrofte
59
5k
Done Done
chrislema
178
15k
実際に使うSQLの書き方 徹底解説 / pgcon21j-tutorial
soudai
119
39k
Transcript
Multiple Ingress on GKE Orangesys Inc.
$Who am I Orangesys Inc. Tachibana Shuji Twitter @gavinzhm https://github.com/orangesys
Running
Orangesys Inc. SaaS監視システム @orangesysio https://orangesys.io
None
None
Orangesys • Kubernetes on GKE • OpsDev -> NoOps Architecture
Architecture: Orangesys > Kubernetes Apigateway Namespace Cloud Load Balancing Standard
Devices HTTPS Browser Client Production Namespace Kube-system Namespace Tiller Replication Controller Grafana Container Engine Replication Controller Influxdb Container Engine Replication Controller Corporate Site App Engine Autoscaling Orangesys Firebase Autoscaling Monitoring Namespace Prometheus RC Influxdb RC Grafana RC Opsbot Namespace Kubebot RC K8s-event RC Stripe Server Api Container Engine Replication Controller PostgresSQL Container Engine Replication Controller MariaDb Container Engine Replication Controller Nginx Container Engine Replication Controller Traefik Container Engine Replication Controller Server Telegraf Ingress Container Engine Replication Controller Kong ApiGateway Container Engine Replication Controller Kubenetes API Replication Controller SSL Cert Bot Replication Controller Orange Api Container Engine Replication Controller
Technology Stack
Agenda • Traefik ingress • Nginx ingress
Why other ingress?! • Wildcard Host not support • Multi
TLS not support • Cross-namespace not support • http -> https redirect • GCPLB、20$/m
Traefik ingress 設定簡単、監視 Dashboardがある
Nginx ingress • Basic Auth support • Rewrite support •
Redirect support
Topic • TLS secret 名前は tls.crt/tls.key • Ingress http通信禁止できる、redirectできない ◦ ingress.kubernetes.io/ssl-redirect:
"false" • Kubernetes Certificate Managerを利用すると、letsencrypt証明証設定が簡単 • Helm https://github.com/orangesys
gavinzhou
chibiegg
danielbryantuk
oracle4engineer
kaonavi
ma3tk
jacopen
kyohmizu
kmatsui
soudai
hokuts
kkato1
sferik
sonatard
zakiwarfel
denniskardys
kastner
tanoku
cromwellryan
holman
lauravandoore
geoffreycrofte
chrislema
