Install the Nginx Ingress Controller

Introduction

This practical sheet provides a step by step procedure to install Nginx as Ingress Controller on workload clusters.

It is given as an example about how to use an Ingress Controller, but others Ingress Controller can be used. It is just for information and to help starting using an Ingress Controller.

To know more about Ingress Controller :

Install the Contour Ingress Controller

Prerequisites

Before deploying Nginx on the workload cluster, some prerequisite has to be installed either on the admin workstation

On the admin station

Install the Helm tool, using this page

Helm : https://helm.sh/docs/intro/install/

On the cluster

Configure the vipSubnet to use

It is required to configure the vipSubnet to use for the load balancer.

Please follow the steps provided in this page : HERE

Add Nginx Helm repository

Install Nginx as Ingress Controller

Ingress controller sample usage

To test our Ingress Controller we will deploy two pods. One POD that will display a webpage with the text apple, and another POD that will display a webpage with the text banana.

Depending of the host url used to access the service the Ingress Controller will use the correct POD to give the answer to the web client.

This implementation require only one IP address that are accessible outside the cluster (Nginx IP), it correspond to the service (type LoadBalancer) that has been created during the Nginx installation process.

For our demo we will use a public and free DNS service called nip.io. It will help and simplify our demo regarding the DNS resolution, but it is not mandatory at all, you can rely on your classical DNS resolution system.

nip.io will resolve the names by answering the IP provided in the name.
Example for :

banana.100.10.12.2.nip.ip will return the ip : 100.100.12.2

apple.100.10.12.2.nip.ip will return the ip : 100.100.12.2

PODs creation

First we need to define our PODS and services, for that, launch these two commands :

apple app

banana app

Verify that pods status are RUNNING after some times

Ingress Deployment

Get the ingress controller service IP. For that use the EXTERNAL-IP value, note the IP it will be required for next step.

Launch the following command to create Ingress objects :

replace the [IP] in the host parameter by the external-ip retrieved with the above command
you can also use your own dns extension instead of nip.io, but for test purpose it will be more easier to use nip.io.

cat <<EOF | kubectl create -f -
apiVersion: networking.k8s.io/v1
kind: Ingress
metadata:
  name: apple-ingress
  annotations:
    ingress.kubernetes.io/rewrite-target: /
spec:
  ingressClassName: nginx
  rules:
  - host: apple.[ip].nip.io
    http:
      paths:
        - path: /
          pathType: Prefix
          backend:
            service:
              port: 
                number: 5678
              name: apple-service
---
apiVersion: networking.k8s.io/v1
kind: Ingress
metadata:
  name: banana-ingress
  annotations:
    ingress.kubernetes.io/rewrite-target: /
spec:
  ingressClassName: nginx
  rules:
  - host: banana.[ip].nip.io
    http:
      paths:
        - path: /
          pathType: Prefix
          backend:
            service:
              port: 
                number: 5678
              name: banana-service
EOF

Verify the status of the ingress

Test the web page access

Open a web browser that can access to your Ingress Controller IP and try the both ingress URL.

http://banana.[IP].nip.io (replace the [IP] with the exernal ip)
http://apple.[IP].nip.io (replace the [IP] with the exernal ip)

Additional test usage

It is also possible to use a same url and redirect the flow depending of the path in the url.

For example :

http://myapp.[IP].nip.io/apple will use the POD apple
http://myapp.[IP].nip.io/banana will use the POD banana

The sample yaml file to use for this kind of ingerss is :

cat <<EOF | kubectl create -f -
apiVersion: networking.k8s.io/v1
kind: Ingress
metadata:
  name: apple-ingress
  annotations:
    ingress.kubernetes.io/rewrite-target: /
spec:
  ingressClassName: nginx
  rules:
  - host: apple.[ip].nip.io
    http:
      paths:
        - path: /
          pathType: Prefix
          backend:
            service:
              port: 
                number: 5678
              name: apple-service
---
apiVersion: networking.k8s.io/v1
kind: Ingress
metadata:
  name: banana-ingress
  annotations:
    ingress.kubernetes.io/rewrite-target: /
spec:
  ingressClassName: nginx
  rules:
  - host: banana.[ip].nip.io
    http:
      paths:
        - path: /
          pathType: Prefix
          backend:
            service:
              port: 
                number: 5678
              name: banana-service
EOF

Overview

Practical sheets

API

Backup

Cloud Customer Space

Contractual documents

Help and technical assistance

Online help

Roles and users

Technical Dashboards

The Support

Virtual Data Center ressources

Kubernetes

Additional components

KaaS

Tooling & Troubleshooting

Network

Networks and External Interconnections (links)

VDC Networks

Secnumcloud

Security

Services Area

Log in to the service area

Services

Storage

Objet Storage (S3)

Advanced features implementation guide

Getting Started

Service user manual

Shared storage (Network storage)

VDC & Virtual Machines

vCOD

Virtual Machines

Advanced Operations

Known Issues

Main Operations

VMware Cloud Director (VCD)

Catalogs

VMWare Cloud Director Availability (vCDA)

Q & A