인그레스 인증키 실습

kubectl create deployment http-go --image=myoungseok/http-go kubectl expose deployment http-go --port=80 --target-port=8080 kubectl create deployment tomcat --image=consol/tomcat-7.0 kubectl expose deployment tomcat --port=80 --target-port=8080 openssl req -x509 -nodes -days 365 -newkey rsa:2048 \     -out ingress-tls.crt \     -keyout ingress-tls.key \     -subj "/CN=ingress-tls" kubectl create secret tls ingress-tls \     --namespace default \     --key ingress-tls.key \     --cert ingress-tls.crt

 

cat <<EOF | kubectl apply -f - apiVersion: networking.k8s.io/v1 kind: Ingress metadata:   name: http-go-ingress   annotations:     kubernetes.io/ingress.class: nginx     nginx.ingress.kubernetes.io/rewrite-target: /     nginx.ingress.kubernetes.io/ssl-redirect: "true" spec:   tls:   - hosts:       - http-go.itbank.com       - tomcat.itbank.com     secretName: ingress-tls   rules:   - host: http-go.itbank.com     http:       paths:       - path: /         pathType: Prefix         backend:           service:             name: http-go             port:               number: 80   rules:   - host: tomcat.itbank.com     http:       paths:       - path: /         pathType: Prefix         backend:           service:             name: tomcat             port:               number: 80 EOF

 

 

kubectl describe secret ingress-tls

 

 

kubectl get ingress

 

 

kubectl get all

 

 

kubectl get secret

 

 

kubectl describe ingress http-go-ingress

 

 

kubectl get svc -n ingress-nginx

 

 

curl http://http-go.itbank.com:31754/ -kv --resolve http-go.itbank.com:31754:127.0.0.1

 

 

curl https://http-go.itbank.com:31078/ -kv --resolve http-go.itbank.com:31078:127.0.0.1

 

 

톰캣으로 진행을 해보자

 

curl http://tomcat.itbank.com:31754/ -kv --resolve tomcat.itbank.com:31754:127.0.0.1

 

curl https://tomcat.itbank.com:31078/ -kv --resolve tomcat.itbank.com:31078:127.0.0.1