2017-10-13 13:55:03 +00:00
|
|
|
kind: Service
|
|
|
|
|
apiVersion: v1
|
|
|
|
|
metadata:
|
|
|
|
|
name: ingress-nginx
|
|
|
|
|
annotations:
|
2018-02-08 03:15:50 +00:00
|
|
|
# replace with the correct value of the generated certificate in the AWS console
|
2018-08-22 13:37:22 +00:00
|
|
|
service.beta.kubernetes.io/aws-load-balancer-ssl-cert: "arn:aws:acm:us-west-2:XXXXXXXX:certificate/XXXXXX-XXXXXXX-XXXXXXX-XXXXXXXX"
|
2017-10-13 13:55:03 +00:00
|
|
|
# the backend instances are HTTP
|
|
|
|
|
service.beta.kubernetes.io/aws-load-balancer-backend-protocol: "http"
|
|
|
|
|
# Map port 443
|
|
|
|
|
service.beta.kubernetes.io/aws-load-balancer-ssl-ports: "https"
|
2018-09-06 04:14:07 +00:00
|
|
|
# Ensure the ELB idle timeout is less than nginx keep-alive timeout. By default,
|
|
|
|
|
# NGINX keep-alive is set to 75s. If using WebSockets, the value will need to be
|
|
|
|
|
# increased to '3600' to avoid any potential issues.
|
2018-09-26 13:15:57 +00:00
|
|
|
service.beta.kubernetes.io/aws-load-balancer-connection-idle-timeout: "60"
|
2017-10-13 13:55:03 +00:00
|
|
|
spec:
|
2019-04-30 16:45:58 +00:00
|
|
|
externalTrafficPolicy: Cluster
|
