kubernetes-bootstrapping/05-ingress-controller-nginx/README.md

# 05 | Ingress Controller = NGINX

[https://kubernetes.github.io/ingress-nginx/](https://kubernetes.github.io/ingress-nginx/)

[https://github.com/kubernetes/ingress-nginx](https://github.com/kubernetes/ingress-nginx)

The ingress controller provides external access to services in the cluster by acting as a reverse proxy.  In this case, I've selected nginx which is simple to configure, and very fast.  It does not have as many fancy features as some other options though.  

```bash
helm upgrade --install ingress-nginx ingress-nginx   --repo https://kubernetes.github.io/ingress-nginx   --namespace ingress-nginx --create-namespace -f values.yaml

```

Example usage:

```yaml
apiVersion: networking.k8s.io/v1
kind: Ingress
metadata:
  name: ingress-mandelmapper
  annotations:
    cert-manager.io/issuer: letsencrypt
spec:
  ingressClassName: nginx
  rules:
  - host: mandelmap.home.stevenpolley.net
    http:
      paths:
      - path: /
        pathType: Prefix
        backend:
          service:
            name: mandelmapper
            port:
              number: 6161
  tls:
    - hosts:
      - mandelmap.home.stevenpolley.net
      secretName: mandelmap-cert
---
apiVersion: networking.k8s.io/v1
kind: Ingress
metadata:
  name: ingress-myservicea
spec:
  ingressClassName: nginx
  rules:
  - host: myservicea.foo.org
    http:
      paths:
      - path: /
        backend:
          service:
            name: myservicea
            port:
              number: 8080
---
apiVersion: networking.k8s.io/v1
kind: Ingress
metadata:
  name: ingress-myserviceb
  cert-manager.io/issuer: letsencrypt
spec:
  ingressClassName: nginx
  rules:
  - host: myserviceb.foo.org
    http:
      paths:
      - path: /
        backend:
          service:
            name: myserviceb
            port:
              number: 8443
  tls:
    - hosts:
      - myserviceb.foo.org
      secretName: example-tls
---
# A secret must also be provided, this will be created by cert-manager
apiVersion: v1
kind: Secret
metadata:
  name: example-tls
data:
  tls.crt: <base64 encoded cert>
  tls.key: <base64 encoded key>
type: kubernetes.io/tls
```
Resequence steps and add cert-manager 2023-12-31 18:26:32 +00:00			`# 05 \| Ingress Controller = NGINX`
Add ingress-nginx-controller 2023-12-23 02:54:51 +00:00
improve readme with links and content 2023-12-23 05:24:31 +00:00			`[https://kubernetes.github.io/ingress-nginx/](https://kubernetes.github.io/ingress-nginx/)`
Resequence steps and add cert-manager 2023-12-31 18:26:32 +00:00
improve readme with links and content 2023-12-23 05:24:31 +00:00			`[https://github.com/kubernetes/ingress-nginx](https://github.com/kubernetes/ingress-nginx)`

Resequence steps and add cert-manager 2023-12-31 18:26:32 +00:00			`The ingress controller provides external access to services in the cluster by acting as a reverse proxy. In this case, I've selected nginx which is simple to configure, and very fast. It does not have as many fancy features as some other options though.`

Add ingress-nginx-controller 2023-12-23 02:54:51 +00:00			```bash
			`helm upgrade --install ingress-nginx ingress-nginx --repo https://kubernetes.github.io/ingress-nginx --namespace ingress-nginx --create-namespace -f values.yaml`

			```

			`Example usage:`

			```yaml
Fix apiVersion for ingress-controller-nginx examples 2023-12-23 17:02:49 +00:00			`apiVersion: networking.k8s.io/v1`
			`kind: Ingress`
			`metadata:`
			`name: ingress-mandelmapper`
Add letsencrypt 2024-02-19 00:59:20 +00:00			`annotations:`
			`cert-manager.io/issuer: letsencrypt`
Fix apiVersion for ingress-controller-nginx examples 2023-12-23 17:02:49 +00:00			`spec:`
			`ingressClassName: nginx`
			`rules:`
			`- host: mandelmap.home.stevenpolley.net`
			`http:`
			`paths:`
			`- path: /`
			`pathType: Prefix`
			`backend:`
			`service:`
			`name: mandelmapper`
			`port:`
			`number: 6161`
Add letsencrypt 2024-02-19 00:59:20 +00:00			`tls:`
			`- hosts:`
			`- mandelmap.home.stevenpolley.net`
			`secretName: mandelmap-cert`
Resequence steps and add cert-manager 2023-12-31 18:26:32 +00:00			`---`
Fix apiVersion for ingress-controller-nginx examples 2023-12-23 17:02:49 +00:00			`apiVersion: networking.k8s.io/v1`
Add ingress-nginx-controller 2023-12-23 02:54:51 +00:00			`kind: Ingress`
			`metadata:`
			`name: ingress-myservicea`
			`spec:`
			`ingressClassName: nginx`
			`rules:`
			`- host: myservicea.foo.org`
			`http:`
			`paths:`
			`- path: /`
			`backend:`
Fix apiVersion for ingress-controller-nginx examples 2023-12-23 17:02:49 +00:00			`service:`
			`name: myservicea`
			`port:`
			`number: 8080`
Add ingress-nginx-controller 2023-12-23 02:54:51 +00:00			`---`
Fix apiVersion for ingress-controller-nginx examples 2023-12-23 17:02:49 +00:00			`apiVersion: networking.k8s.io/v1`
Add ingress-nginx-controller 2023-12-23 02:54:51 +00:00			`kind: Ingress`
			`metadata:`
			`name: ingress-myserviceb`
Add letsencrypt 2024-02-19 00:59:20 +00:00			`cert-manager.io/issuer: letsencrypt`
Add ingress-nginx-controller 2023-12-23 02:54:51 +00:00			`spec:`
			`ingressClassName: nginx`
			`rules:`
			`- host: myserviceb.foo.org`
			`http:`
			`paths:`
			`- path: /`
			`backend:`
Fix apiVersion for ingress-controller-nginx examples 2023-12-23 17:02:49 +00:00			`service:`
			`name: myserviceb`
			`port:`
			`number: 8443`
Add ingress-nginx-controller 2023-12-23 02:54:51 +00:00			`tls:`
			`- hosts:`
			`- myserviceb.foo.org`
			`secretName: example-tls`
			`---`
Add letsencrypt 2024-02-19 00:59:20 +00:00			`# A secret must also be provided, this will be created by cert-manager`
Add ingress-nginx-controller 2023-12-23 02:54:51 +00:00			`apiVersion: v1`
			`kind: Secret`
			`metadata:`
			`name: example-tls`
			`data:`
			`tls.crt: <base64 encoded cert>`
			`tls.key: <base64 encoded key>`
			`type: kubernetes.io/tls`
			```