Skip to content

Instantly share code, notes, and snippets.

@rtnpro

rtnpro/deployment-internal-ingress-nginx-ingress-controller.yaml

Last active August 18, 2019 03:45
Show Gist options

  • Select an option

    Learn more about clone URLs
  • Save rtnpro/6711b6ed11fcd7162508f43fd2c330eb to your computer and use it in GitHub Desktop.

Select an option

Learn more about clone URLs
Save rtnpro/6711b6ed11fcd7162508f43fd2c330eb to your computer and use it in GitHub Desktop.
Download ZIP
nginx-ingress artifacts for clusterIP type service with --publish-service enabled
Raw
deployment-internal-ingress-nginx-ingress-controller.yaml
apiVersion: extensions/v1beta1
kind: Deployment
metadata:
annotations:
deployment.kubernetes.io/revision: "4"
creationTimestamp: "2019-08-10T11:53:29Z"
generation: 4
labels:
app: nginx-ingress
chart: nginx-ingress-1.14.0
component: controller
heritage: Tiller
release: internal-ingress
name: internal-ingress-nginx-ingress-controller
namespace: platform
resourceVersion: "5586291"
selfLink: /apis/extensions/v1beta1/namespaces/platform/deployments/internal-ingress-nginx-ingress-controller
uid: 781431df-bb65-11e9-98b4-ee7082371e8b
spec:
progressDeadlineSeconds: 2147483647
replicas: 1
revisionHistoryLimit: 10
selector:
matchLabels:
app: nginx-ingress
component: controller
release: internal-ingress
strategy:
rollingUpdate:
maxSurge: 1
maxUnavailable: 1
type: RollingUpdate
template:
metadata:
creationTimestamp: null
labels:
app: nginx-ingress
component: controller
release: internal-ingress
spec:
affinity:
podAntiAffinity:
preferredDuringSchedulingIgnoredDuringExecution:
- podAffinityTerm:
labelSelector:
matchExpressions:
- key: release
operator: In
values:
- external-ingress
- key: component
operator: In
values:
- controller
topologyKey: kubernetes.io/hostname
weight: 100
containers:
- args:
- /nginx-ingress-controller
- --default-backend-service=platform/internal-ingress-nginx-ingress-default-backend
- --publish-service=platform/internal-ingress-nginx-ingress-controller
- --election-id=ingress-controller-leader
- --ingress-class=internal-ingress
- --configmap=platform/internal-ingress-nginx-ingress-controller
env:
- name: POD_NAME
valueFrom:
fieldRef:
apiVersion: v1
fieldPath: metadata.name
- name: POD_NAMESPACE
valueFrom:
fieldRef:
apiVersion: v1
fieldPath: metadata.namespace
image: quay.io/kubernetes-ingress-controller/nginx-ingress-controller:0.25.0
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 3
httpGet:
path: /healthz
port: 10254
scheme: HTTP
initialDelaySeconds: 10
periodSeconds: 10
successThreshold: 1
timeoutSeconds: 1
name: nginx-ingress-controller
ports:
- containerPort: 80
name: http
protocol: TCP
- containerPort: 443
name: https
protocol: TCP
- containerPort: 10254
name: metrics
protocol: TCP
readinessProbe:
failureThreshold: 3
httpGet:
path: /healthz
port: 10254
scheme: HTTP
initialDelaySeconds: 10
periodSeconds: 10
successThreshold: 1
timeoutSeconds: 1
resources:
limits:
memory: 256Mi
requests:
cpu: 100m
memory: 100Mi
securityContext:
allowPrivilegeEscalation: true
capabilities:
add:
- NET_BIND_SERVICE
drop:
- ALL
procMount: Default
runAsUser: 33
terminationMessagePath: /dev/termination-log
terminationMessagePolicy: File
dnsPolicy: ClusterFirst
restartPolicy: Always
schedulerName: default-scheduler
securityContext: {}
serviceAccount: internal-ingress-nginx-ingress
serviceAccountName: internal-ingress-nginx-ingress
terminationGracePeriodSeconds: 60
status:
availableReplicas: 1
conditions:
- lastTransitionTime: "2019-08-10T11:53:29Z"
lastUpdateTime: "2019-08-10T11:53:29Z"
message: Deployment has minimum availability.
reason: MinimumReplicasAvailable
status: "True"
type: Available
observedGeneration: 4
readyReplicas: 1
replicas: 1
updatedReplicas: 1
Raw
ing-internal-app.yaml
apiVersion: extensions/v1beta1
kind: Ingress
metadata:
annotations:
certmanager.k8s.io/cluster-issuer: letsencrypt
external-dns.alpha.kubernetes.io/hostname: someapp.internal.example.com
kubernetes.io/ingress.class: internal-ingress
kubernetes.io/tls-acme: "true"
nginx.ingress.kubernetes.io/force-ssl-redirect: "true"
nginx.ingress.kubernetes.io/proxy-body-size: 8m
creationTimestamp: "2019-08-12T18:37:41Z"
resourceVersion: "5586248"
selfLink: /apis/extensions/v1beta1/namespaces/someapp/ingresses/someapp
generation: 1
labels:
app: someapp
chart: generic-service-0.1.0
heritage: Tiller
release: someapp
name: someapp
namespace: someapp
spec:
rules:
- host: someapp.internal.example.com
http:
paths:
- backend:
serviceName: someapp
servicePort: 80
path: /
tls:
- hosts:
- someapp.internal.example.com
secretName: someapp-internal
status:
loadBalancer: {}
Raw
svc-internal-ingress-nginx-ingress-controller.yaml
apiVersion: v1
kind: Service
metadata:
creationTimestamp: "2019-08-10T11:53:29Z"
labels:
app: nginx-ingress
chart: nginx-ingress-1.14.0
component: controller
heritage: Tiller
release: internal-ingress
name: internal-ingress-nginx-ingress-controller
namespace: platform
resourceVersion: "5280776"
selfLink: /api/v1/namespaces/platform/services/internal-ingress-nginx-ingress-controller
uid: 780d8b28-bb65-11e9-98b4-ee7082371e8b
spec:
clusterIP: 10.245.66.43
ports:
- name: http
port: 80
protocol: TCP
targetPort: http
- name: https
port: 443
protocol: TCP
targetPort: https
selector:
app: nginx-ingress
component: controller
release: internal-ingress
sessionAffinity: None
type: ClusterIP
status:
loadBalancer: {}
Raw
values.yaml
controller:
image:
repository: quay.io/kubernetes-ingress-controller/nginx-ingress-controller
tag: "0.25"
ingressClass: internal-ingress
publishService:
enabled: true
replicaCount: 1
resources:
requests:
cpu: 100m
memory: 100Mi
limits:
memory: 256Mi
affinity:
podAntiAffinity:
preferredDuringSchedulingIgnoredDuringExecution:
- weight: 100
podAffinityTerm:
labelSelector:
matchExpressions:
- key: release
operator: In
values:
- external-ingress
- key: component
operator: In
values:
- controller
topologyKey: kubernetes.io/hostname
metrics:
enabled: true
service:
type: ClusterIP
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment