K
Q

Can SSL offloading be configured when using the Application Gateway Ingress Controller?

11/22/2018

I am using the Azure Application Gateway Ingress Controller for Kubernetes. I was able to successfully configure the controller to expose my Kubernetes Services over http. However, I would like the Application Gateway to do SSL offload. So that the Application Gateway will handle https requests, and then forward a plain http request to my Kubernetes service. Currently the Ingress Controller documentation for https requires you to specify the certificate for your Kubernetes Service.

Is it possible to configure the Ingress Controller to do SSL offload so that I don't have to configure https on my Kubernetes Services?

-- ilooner
azure
azure-aks
azure-application-gateway
azure-kubernetes
kubernetes

Similar Questions

Minikub Not Starting Ubuntu 18.4
Unable to connect to Rabbit MQ instance when running from docker container built by dockerfile
Deploying MongoDB in kubernetes does not create pods/services
Keep getting permissions error gcloud.container.clusters.get-credentials
Kubernetes HPA using metrics from another deployment
EKS using NLB ingress and multiple services deployed in node group

1 Answer

11/22/2018

I would assume this is the document you are looking for.

  apiVersion: extensions/v1beta1
  kind: Ingress
  metadata:
    name: guestbook
    annotations:
      kubernetes.io/ingress.class: azure/application-gateway
  spec:
    tls:
      - secretName: <guestbook-secret-name>
    rules:
    - http:
        paths:
        - backend:
            serviceName: frontend
            servicePort: 80

ps. no idea why you would use application gateway with k8s. its garbage.

-- 4c74356b41
Source: StackOverflow