+1
Bharat, see if you can start using the isolated network to get the full
experience of CKS. In shared network you should only rely on connecting to node
ports or have an external load balancer (outside of CloudStack) balance the
traffic to the node ports where any service like traefik runs.
Thanks,
Jayanth
________________________________
From: Wei ZHOU <ustcweiz...@gmail.com>
Sent: Friday, March 1, 2024 11:20:09 pm
To: users@cloudstack.apache.org <users@cloudstack.apache.org>
Subject: Re: CKS with K8s Offering N/w
Hi,
Just my 2 cents.
If you use NodePort, you need to know which worker node the pod is runing
on. It is a problem if there are multiple nodes. To solve this problem,
LoadBalancer can be used. cloudstack creates a load balancing rule to the
NodePort of all worker nodes. So the service can be accessible no matter
where the pod is. However, this only works with Isolated networks, as
shared networks do not support Load Balancer.
traefik may work for you, I did not look into it yet. Another way is as I
have suggested, use kubectl port-forward to access the services with
ClusterIP.
-Wei
On Friday, March 1, 2024, Bharat Bhushan Saini
<bharat.sa...@kloudspot.com.invalid> wrote:
> Hi Jayanth,
>
>
>
> Just as an query I want to know that when the cluster run on shared
> network the traefik-ingress-controller is required to access the
> application externally else nodeport defind is enough for that.
>
>
>
> Thanks and Regards,
>
> Bharat Saini
>
>
>
> [image: signature_3414558938]
>
>
>
> *From: *Jayanth Babu A <jayanth.b...@nxtgen.com.INVALID>
> *Date: *Friday, 1 March 2024 at 9:09 PM
> *To: *users@cloudstack.apache.org <users@cloudstack.apache.org>
> *Subject: *Re: CKS with K8s Offering N/w
>
> EXTERNAL EMAIL: Please verify the sender email address before taking any
> action, replying, clicking any link or opening any attachment.
>
>
> Hi Bharat,
>
> I don't seem to understand your question. Would you please explain in more
> detail?
>
> Thanks,
> Jayanth
>
> ________________________________
> From: Bharat Bhushan Saini <bharat.sa...@kloudspot.com.INVALID>
> Sent: Friday, March 1, 2024 3:15:18 pm
> To: users@cloudstack.apache.org <users@cloudstack.apache.org>
> Subject: Re: CKS with K8s Offering N/w
>
> Hi Wei,
>
> In shared n/w the traefik ingress is needed or only nodeport is enough for
> that!
>
> Thanks and Regards,
> Bharat Saini
>
> [signature_1176335358]
>
> From: Wei ZHOU <ustcweiz...@gmail.com>
> Date: Friday, 1 March 2024 at 1:59 PM
> To: users@cloudstack.apache.org <users@cloudstack.apache.org>
> Subject: Re: CKS with K8s Offering N/w
> EXTERNAL EMAIL: Please verify the sender email address before taking any
> action, replying, clicking any link or opening any attachment.
>
>
> Hi Bharat,
>
> If you deploy a CKS cluster on an isolated network, please ensure the
> public Ips (which include the endpoint IP of the CKS cluster, and Load
> balancer IPs) are reachable from the management server.
> The management server configures the k8s nodes (controller/worker) via the
> port 2222-222x of endpoint IP.
>
> If you deploy a CKS cluster on a shared network, Load balancer is not
> supported.
> If you create a K8s service with nodeport, you can access it by <k8s node
> IP>:<node port>.
> If clusterIP is used, to access the service, you need to run "kubectl
> port-forward" on the controller node.
>
>
> -Wei
>
>
Disclaimer *** This e-mail contains PRIVILEGED AND CONFIDENTIAL INFORMATION
intended solely for the use of the addressee(s). If you are not the intended
recipient, please notify the sender by e-mail and delete the original message.
Further, you are not authorised to copy, disclose, or distribute this e-mail or
its contents to any other person and any such actions are unlawful and strictly
prohibited. This e-mail may contain viruses. NxtGen Datacenter & Cloud
Technologies Private Ltd ("NxtGen") has taken every reasonable precaution to
minimize this risk but is not liable for any damage you may sustain as a result
of any virus in this e-mail. You should carry out your own virus checks before
opening the e-mail or attachment. NxtGen reserves the right to monitor and
review the content of all messages sent to or from this e-mail address.
Messages sent to or from this e-mail address may be stored on the NxtGen e-mail
system. *** End of Disclaimer ***NXTGEN***
