31 lines
1.1 KiB
YAML
31 lines
1.1 KiB
YAML
kind: Service
|
|
apiVersion: v1
|
|
metadata:
|
|
name: ingress-nginx
|
|
namespace: ingress-nginx
|
|
labels:
|
|
app.kubernetes.io/name: ingress-nginx
|
|
app.kubernetes.io/part-of: ingress-nginx
|
|
annotations:
|
|
# replace with the correct value of the generated certificate in the AWS console
|
|
service.beta.kubernetes.io/aws-load-balancer-ssl-cert: "arn:aws:acm:us-west-2:XXXXXXXX:certificate/XXXXXX-XXXXXXX-XXXXXXX-XXXXXXXX"
|
|
# the backend instances are HTTP
|
|
service.beta.kubernetes.io/aws-load-balancer-backend-protocol: "http"
|
|
# Map port 443
|
|
service.beta.kubernetes.io/aws-load-balancer-ssl-ports: "https"
|
|
# Ensure the ELB idle timeout is less than nginx keep-alive timeout. By default,
|
|
# NGINX keep-alive is set to 75s. If using WebSockets, the value will need to be
|
|
# increased to '3600' to avoid any potential issues.
|
|
service.beta.kubernetes.io/aws-load-balancer-connection-idle-timeout: '60'
|
|
spec:
|
|
type: LoadBalancer
|
|
selector:
|
|
app.kubernetes.io/name: ingress-nginx
|
|
app.kubernetes.io/part-of: ingress-nginx
|
|
ports:
|
|
- name: http
|
|
port: 80
|
|
targetPort: http
|
|
- name: https
|
|
port: 443
|
|
targetPort: http
|