热门标签
热门文章
- 1springboot中使用EasyExcel实现Excel 导入导出_easyexcel导入excel
- 2RTC技术|弹幕互动玩法方案&低延时传输引擎的体验优化
- 3flask与html进行简单交互第一弹_html调用flask接口
- 4C语言将a,b的值对换(采用指针交换)_c语言指针交换变量a和b的值
- 52023最新WSL搭建深度学习平台教程(适用于Docker-gpu、tensorflow-gpu、pytorch-gpu)_windows11 wsl 可以用来跑大模型么?
- 6OpenCV4.x图像处理实例-YOLO v8检测与识别物体_opencv yolov8
- 7Python的PyQt框架的使用-资源文件夹的使用_pyqt5导入文件夹作为img.prc
- 8【linux温故】CFS调度
- 9简单整理SpringCloudAlibaba+SpringSecurity+JWT_springcloudalibaba+springsctiry
- 10C语言冒泡排序介绍
当前位置: article > 正文
Ingress 使用域名访问服务_ingress 域名
作者:代码独立开发者 | 2024-01-17 09:17:54
赞
踩
ingress 域名
Ingress是Kubenetes中的一个controller对象,使用Ingress可以通过域名来访问服务,一个服务对应一组pod,实现负载均衡。
Ingress并不是系统内置的controller,需要单独安装。
1 创建Nginx应用
- [root@k8smaster ~]# kubectl create deploy web --image=nginx
- deployment.apps/web created
- [root@k8smaster ~]# kubectl expose deploy web --port=80 --target-port=80 --type=NodePort
- service/web exposed
-
2 部署Ingress Controller
ingress-controller.yaml
- apiVersion: v1
- kind: Namespace
- metadata:
- name: ingress-nginx
- labels:
- app.kubernetes.io/name: ingress-nginx
- app.kubernetes.io/part-of: ingress-nginx
-
- ---
-
- kind: ConfigMap
- apiVersion: v1
- metadata:
- name: nginx-configuration
- namespace: ingress-nginx
- labels:
- app.kubernetes.io/name: ingress-nginx
- app.kubernetes.io/part-of: ingress-nginx
-
- ---
- kind: ConfigMap
- apiVersion: v1
- metadata:
- name: tcp-services
- namespace: ingress-nginx
- labels:
- app.kubernetes.io/name: ingress-nginx
- app.kubernetes.io/part-of: ingress-nginx
-
- ---
- kind: ConfigMap
- apiVersion: v1
- metadata:
- name: udp-services
- namespace: ingress-nginx
- labels:
- app.kubernetes.io/name: ingress-nginx
- app.kubernetes.io/part-of: ingress-nginx
-
- ---
- apiVersion: v1
- kind: ServiceAccount
- metadata:
- name: nginx-ingress-serviceaccount
- namespace: ingress-nginx
- labels:
- app.kubernetes.io/name: ingress-nginx
- app.kubernetes.io/part-of: ingress-nginx
-
- ---
- apiVersion: rbac.authorization.k8s.io/v1beta1
- kind: ClusterRole
- metadata:
- name: nginx-ingress-clusterrole
- labels:
- app.kubernetes.io/name: ingress-nginx
- app.kubernetes.io/part-of: ingress-nginx
- rules:
- - apiGroups:
- - ""
- resources:
- - configmaps
- - endpoints
- - nodes
- - pods
- - secrets
- verbs:
- - list
- - watch
- - apiGroups:
- - ""
- resources:
- - nodes
- verbs:
- - get
- - apiGroups:
- - ""
- resources:
- - services
- verbs:
- - get
- - list
- - watch
- - apiGroups:
- - ""
- resources:
- - events
- verbs:
- - create
- - patch
- - apiGroups:
- - "extensions"
- - "networking.k8s.io"
- resources:
- - ingresses
- verbs:
- - get
- - list
- - watch
- - apiGroups:
- - "extensions"
- - "networking.k8s.io"
- resources:
- - ingresses/status
- verbs:
- - update
-
- ---
- apiVersion: rbac.authorization.k8s.io/v1beta1
- kind: Role
- metadata:
- name: nginx-ingress-role
- namespace: ingress-nginx
- labels:
- app.kubernetes.io/name: ingress-nginx
- app.kubernetes.io/part-of: ingress-nginx
- rules:
- - apiGroups:
- - ""
- resources:
- - configmaps
- - pods
- - secrets
- - namespaces
- verbs:
- - get
- - apiGroups:
- - ""
- resources:
- - configmaps
- resourceNames:
- # Defaults to "<election-id>-<ingress-class>"
- # Here: "<ingress-controller-leader>-<nginx>"
- # This has to be adapted if you change either parameter
- # when launching the nginx-ingress-controller.
- - "ingress-controller-leader-nginx"
- verbs:
- - get
- - update
- - apiGroups:
- - ""
- resources:
- - configmaps
- verbs:
- - create
- - apiGroups:
- - ""
- resources:
- - endpoints
- verbs:
- - get
-
- ---
- apiVersion: rbac.authorization.k8s.io/v1beta1
- kind: RoleBinding
- metadata:
- name: nginx-ingress-role-nisa-binding
- namespace: ingress-nginx
- labels:
- app.kubernetes.io/name: ingress-nginx
- app.kubernetes.io/part-of: ingress-nginx
- roleRef:
- apiGroup: rbac.authorization.k8s.io
- kind: Role
- name: nginx-ingress-role
- subjects:
- - kind: ServiceAccount
- name: nginx-ingress-serviceaccount
- namespace: ingress-nginx
-
- ---
- apiVersion: rbac.authorization.k8s.io/v1beta1
- kind: ClusterRoleBinding
- metadata:
- name: nginx-ingress-clusterrole-nisa-binding
- labels:
- app.kubernetes.io/name: ingress-nginx
- app.kubernetes.io/part-of: ingress-nginx
- roleRef:
- apiGroup: rbac.authorization.k8s.io
- kind: ClusterRole
- name: nginx-ingress-clusterrole
- subjects:
- - kind: ServiceAccount
- name: nginx-ingress-serviceaccount
- namespace: ingress-nginx
-
- ---
-
- apiVersion: apps/v1
- kind: Deployment
- metadata:
- name: nginx-ingress-controller
- namespace: ingress-nginx
- labels:
- app.kubernetes.io/name: ingress-nginx
- app.kubernetes.io/part-of: ingress-nginx
- spec:
- replicas: 1
- selector:
- matchLabels:
- app.kubernetes.io/name: ingress-nginx
- app.kubernetes.io/part-of: ingress-nginx
- template:
- metadata:
- labels:
- app.kubernetes.io/name: ingress-nginx
- app.kubernetes.io/part-of: ingress-nginx
- annotations:
- prometheus.io/port: "10254"
- prometheus.io/scrape: "true"
- spec:
- hostNetwork: true
- # wait up to five minutes for the drain of connections
- terminationGracePeriodSeconds: 300
- serviceAccountName: nginx-ingress-serviceaccount
- nodeSelector:
- kubernetes.io/os: linux
- containers:
- - name: nginx-ingress-controller
- image: lizhenliang/nginx-ingress-controller:0.30.0
- args:
- - /nginx-ingress-controller
- - --configmap=$(POD_NAMESPACE)/nginx-configuration
- - --tcp-services-configmap=$(POD_NAMESPACE)/tcp-services
- - --udp-services-configmap=$(POD_NAMESPACE)/udp-services
- - --publish-service=$(POD_NAMESPACE)/ingress-nginx
- - --annotations-prefix=nginx.ingress.kubernetes.io
- securityContext:
- allowPrivilegeEscalation: true
- capabilities:
- drop:
- - ALL
- add:
- - NET_BIND_SERVICE
- # www-data -> 101
- runAsUser: 101
- env:
- - name: POD_NAME
- valueFrom:
- fieldRef:
- fieldPath: metadata.name
- - name: POD_NAMESPACE
- valueFrom:
- fieldRef:
- fieldPath: metadata.namespace
- ports:
- - name: http
- containerPort: 80
- protocol: TCP
- - name: https
- containerPort: 443
- protocol: TCP
- livenessProbe:
- failureThreshold: 3
- httpGet:
- path: /healthz
- port: 10254
- scheme: HTTP
- initialDelaySeconds: 10
- periodSeconds: 10
- successThreshold: 1
- timeoutSeconds: 10
- readinessProbe:
- failureThreshold: 3
- httpGet:
- path: /healthz
- port: 10254
- scheme: HTTP
- periodSeconds: 10
- successThreshold: 1
- timeoutSeconds: 10
- lifecycle:
- preStop:
- exec:
- command:
- - /wait-shutdown
-
- ---
-
- apiVersion: v1
- kind: LimitRange
- metadata:
- name: ingress-nginx
- namespace: ingress-nginx
- labels:
- app.kubernetes.io/name: ingress-nginx
- app.kubernetes.io/part-of: ingress-nginx
- spec:
- limits:
- - min:
- memory: 90Mi
- cpu: 100m
- type: Container
- [root@k8smaster ~]# kubectl apply -f ingress-controller.yaml
- namespace/ingress-nginx created
- configmap/nginx-configuration created
- configmap/tcp-services created
- configmap/udp-services created
- serviceaccount/nginx-ingress-serviceaccount created
- clusterrole.rbac.authorization.k8s.io/nginx-ingress-clusterrole created
- role.rbac.authorization.k8s.io/nginx-ingress-role created
- rolebinding.rbac.authorization.k8s.io/nginx-ingress-role-nisa-binding created
- clusterrolebinding.rbac.authorization.k8s.io/nginx-ingress-clusterrole-nisa-binding created
- deployment.apps/nginx-ingress-controller created
- limitrange/ingress-nginx created
3 创建访问规则
ingress-h.yaml
- apiVersion: networking.k8s.io/v1beta1
- kind: Ingress
- metadata:
- name: example-ingress
- spec:
- rules:
- - host: example.ingredemo.com
- http:
- paths:
- - path: /
- backend:
- serviceName: web
- servicePort: 80
查看ingress
- [root@k8smaster ~]# kubectl get ing
- NAME CLASS HOSTS ADDRESS PORTS AGE
- example-ingress <none> example.ingredemo.com 80 4m50s
- # 查看 ingress 所在node ip
- [root@k8smaster ~]# kubectl get pods -n ingress-nginx -o wide
-
-
在外部电脑配置host
上一步node ip example.ingredemo.com
接下来就可以用域名访问了
声明:本文内容由网友自发贡献,不代表【wpsshop博客】立场,版权归原作者所有,本站不承担相应法律责任。如您发现有侵权的内容,请联系我们。转载请注明出处:https://www.wpsshop.cn/article/detail/40808
推荐阅读
相关标签
