average-arm-20932
07/15/2022, 5:23 PMHello Team,
I'm using K3s version(v1.22.4+k3s1), I need to send the SSL connections directly to the backend, not decrypt at my Traefik. The backend needs to receive https requests.
The below annotations is not working, could anyone help me here, any help appreciated.
apiVersion: <http://networking.k8s.io/v1|networking.k8s.io/v1>
kind: Ingress
metadata:
name: cp-certissuer-ing
namespace: cp-certissuer
annotations:
<http://traefik.ingress.kubernetes.io/ssl.passthrough|traefik.ingress.kubernetes.io/ssl.passthrough>: "True"
spec:
rules:
- host: <http://server.example.com|server.example.com>
http:
paths:
- backend:
service:
name: cp-certissuer
port:
number: 8080
path: /cert/actuator/info
pathType: Prefix
tls:
- hosts:
- <http://server.example.com|server.example.com>
secretName: cp-certissuer-ssl-secret
worried-businessperson-13284
07/16/2022, 5:44 PMmetadata:
annotations:
<http://traefik.ingress.kubernetes.io/service.serversscheme|traefik.ingress.kubernetes.io/service.serversscheme>: https
average-arm-20932
07/18/2022, 7:22 PMThank you! for the reply,
Do you mean I should use '<http://traefik.ingress.kubernetes.io/service.serversscheme|traefik.ingress.kubernetes.io/service.serversscheme>: https' rather '<http://traefik.ingress.kubernetes.io/ssl.passthrough|traefik.ingress.kubernetes.io/ssl.passthrough>: "True"' for SSL-PASSTHROUGH?
Though I have tired your options, but it is still not working, could you please reconfirm it.
worried-businessperson-13284
07/18/2022, 7:34 PMaverage-arm-20932
07/18/2022, 7:49 PMworried-businessperson-13284
07/18/2022, 8:02 PMaverage-arm-20932
07/18/2022, 8:08 PMworried-businessperson-13284
07/18/2022, 8:22 PMaverage-arm-20932
07/21/2022, 2:42 PM