Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Multiple Ingress on GKE
Search
Gavin Zhou
April 21, 2017
Technology
0
1.8k
Multiple Ingress on GKE
Multiple Ingress traefik & nginx on GKE
Gavin Zhou
April 21, 2017
Tweet
Share
More Decks by Gavin Zhou
See All by Gavin Zhou
Prometheus Operator
gavinzhou
3
1.2k
Other ingress voyager
gavinzhou
0
180
kubernetes chatops
gavinzhou
0
590
Building Minimal Docker Containers
gavinzhou
0
1.3k
Other Decks in Technology
See All in Technology
ストレージエンジニアの仕事と、近年の計算機について / 第58回 情報科学若手の会
pfn
PRO
4
910
AIエージェントによる業務効率化への飽くなき挑戦 -AWS上の実開発事例から学んだ効果、現実そしてギャップ-
nasuvitz
5
1.5k
マルチエージェントのチームビルディング_2025-10-25
shinoyamada
0
220
DSPy入門
tomehirata
6
680
SRE × マネジメントレイヤーが挑戦した組織・会社のオブザーバビリティ改革 ― ビジネス価値と信頼性を両立するリアルな挑戦
coconala_engineer
0
300
Open Table Format (OTF) が必要になった背景とその機能 (2025.10.28)
simosako
2
500
ゼロコード計装導入後のカスタム計装でさらに可観測性を高めよう
sansantech
PRO
1
570
20251024_TROCCO/COMETAアップデート紹介といくつかデモもやります!_#p_UG 東京:データ活用が進む組織の作り方
soysoysoyb
0
130
様々なファイルシステム
sat
PRO
0
270
Okta Identity Governanceで実現する最小権限の原則
demaecan
0
210
Zero Trust DNS でより安全なインターネット アクセス
murachiakira
0
120
データとAIで明らかになる、私たちの課題 ~Snowflake MCP,Salesforce MCPに触れて~ / Data and AI Insights
kaonavi
0
170
Featured
See All Featured
How STYLIGHT went responsive
nonsquared
100
5.9k
A designer walks into a library…
pauljervisheath
209
24k
Rebuilding a faster, lazier Slack
samanthasiow
84
9.2k
Raft: Consensus for Rubyists
vanstee
140
7.2k
The Art of Delivering Value - GDevCon NA Keynote
reverentgeek
16
1.7k
"I'm Feeling Lucky" - Building Great Search Experiences for Today's Users (#IAC19)
danielanewman
230
22k
The Cult of Friendly URLs
andyhume
79
6.6k
Making the Leap to Tech Lead
cromwellryan
135
9.6k
Measuring & Analyzing Core Web Vitals
bluesmoon
9
640
Distributed Sagas: A Protocol for Coordinating Microservices
caitiem20
333
22k
ピンチをチャンスに:未来をつくるプロダクトロードマップ #pmconf2020
aki_iinuma
127
54k
Fashionably flexible responsive web design (full day workshop)
malarkey
407
66k
Transcript
Multiple Ingress on GKE Orangesys Inc.
$Who am I Orangesys Inc. Tachibana Shuji Twitter @gavinzhm https://github.com/orangesys
Running
Orangesys Inc. SaaS監視システム @orangesysio https://orangesys.io
None
None
Orangesys • Kubernetes on GKE • OpsDev -> NoOps Architecture
Architecture: Orangesys > Kubernetes Apigateway Namespace Cloud Load Balancing Standard
Devices HTTPS Browser Client Production Namespace Kube-system Namespace Tiller Replication Controller Grafana Container Engine Replication Controller Influxdb Container Engine Replication Controller Corporate Site App Engine Autoscaling Orangesys Firebase Autoscaling Monitoring Namespace Prometheus RC Influxdb RC Grafana RC Opsbot Namespace Kubebot RC K8s-event RC Stripe Server Api Container Engine Replication Controller PostgresSQL Container Engine Replication Controller MariaDb Container Engine Replication Controller Nginx Container Engine Replication Controller Traefik Container Engine Replication Controller Server Telegraf Ingress Container Engine Replication Controller Kong ApiGateway Container Engine Replication Controller Kubenetes API Replication Controller SSL Cert Bot Replication Controller Orange Api Container Engine Replication Controller
Technology Stack
Agenda • Traefik ingress • Nginx ingress
Why other ingress?! • Wildcard Host not support • Multi
TLS not support • Cross-namespace not support • http -> https redirect • GCPLB、20$/m
Traefik ingress 設定簡単、監視 Dashboardがある
Nginx ingress • Basic Auth support • Rewrite support •
Redirect support
Topic • TLS secret 名前は tls.crt/tls.key • Ingress http通信禁止できる、redirectできない ◦ ingress.kubernetes.io/ssl-redirect:
"false" • Kubernetes Certificate Managerを利用すると、letsencrypt証明証設定が簡単 • Helm https://github.com/orangesys
gavinzhou
pfn
nasuvitz
shinoyamada
tomehirata
coconala_engineer
simosako
sansantech
soysoysoyb
sat
demaecan
murachiakira
kaonavi
nonsquared
pauljervisheath
samanthasiow
vanstee
reverentgeek
danielanewman
andyhume
cromwellryan
bluesmoon
caitiem20
aki_iinuma
malarkey
