K
Q

Kubernetes - HTTPS Communicating between services

6/21/2018

I have few services running in multiple namesapces.

My deployment is as follows.

Ingress -> Service(ClusterIP) -> Pods

My application is running as HTTPS due to some restrictions and ingress also running as HTTPS. I have different certificates in both the places.

Trying to find different ways of communicating b/w services.

If both the services are running on the same namesapce,

  1. Using ingress url - This should be used for connecting from outside the cluster. But, still can be used within the cluster also.
https://<INGRESS_NAME>.<NAMESPACE>.ing.lb.<CLUSTER_NAME>.XYZ.com/
  1. Using service url
https://<SVC_NAME>.<NAMESPACE>.svc.int.<CLUSTER_NAME>.XYZ.com/
  1. Using just the svc name

https://SVC_NAME:PORT

  1. Using the svc name and namespace name

https://SVC_NAME.NAMESPACE:PORT

Is there any other way of connecting?

Also, My application is running as HTTPS and Ingress is also with HTTPS.

When i connect using https://:, getting the cert error.

Caused by: javax.net.ssl.SSLPeerUnverifiedException: Host name '' does not match the certificate subject provided by the peer.

Do i need to include all these names( like URL 2, URL 3, URL 4) in the cert?

Thanks

-- user1578872
certificate
kubernetes
pki
ssl-certificate

Similar Questions

adding quotes around shellscript parameter from Jenkins/groovy
Readiness probe for statefulset, not individual pod/container
Installed Kubernetes on Ubuntu and I see a lot of nodes are getting created in MAAS
Is there a kubernetes cronjob kind which allows multiple schedules for a single container image?

0 Answers