Channels
academy
amazon
arm
azure
cabpr
chinese
ci-cd
danish
deutsch
developer
elemental
epinio
espanol
events
extensions
fleet
français
gcp
general
harvester
harvester-dev
hobbyfarm
hypper
japanese
k3d
k3os
k3s
k3s-contributor
kim
kubernetes
kubewarden
lima
logging
longhorn-dev
longhorn-storage
masterclass
mesos
mexico
nederlands
neuvector-security
office-hours
one-point-x
onlinemeetup
onlinetraining
opni
os
ozt
phillydotnet
portugues
rancher-desktop
rancher-extensions
rancher-setup
rancher-wrangler
random
rfed_ara
rio
rke
rke2
russian
s3gw
service-mesh
storage
submariner
supermicro-sixsq
swarm
terraform-controller
terraform-provider-rancher2
terraform-provider-rke
theranchcast
training-0110
training-0124
training-0131
training-0207
training-0214
training-1220
ukranian
v16-v21-migration
vsphere
windows
Title
l
lively-night-78214
12/08/2022, 5:09 AMLooking at the architecture on https://docs.k3s.io/architecture#single-server-setup-with-an-embedded-db to try and understand really where the load balancer sits and operates from. My understanding is that
serversc
creamy-pencil-82913
12/08/2022, 10:11 AMthis one?
all the nodes can run traefik
by default only a single replica is requested
l
lively-night-78214
12/08/2022, 10:11 AMoh actually you answered
ok
so if i point an application domain
c
creamy-pencil-82913
12/08/2022, 10:12 AMbut the LoadBalancer is accessible on all the nodes
l
lively-night-78214
12/08/2022, 10:12 AMlets say my amazing app ... and run it on this k3s cluster
where should the DNS point
c
creamy-pencil-82913
12/08/2022, 10:12 AMso just point it at 80/443 on all the nodes
đź‘Ť 1
l
lively-night-78214
12/08/2022, 10:12 AMto node(s) or to server(s)
ok so nodes, not server
c
creamy-pencil-82913
12/08/2022, 10:13 AMTraefik creates a LoadBalancer Service on 80/443. ServiceLB in turn forwards 80/443 on all the nodes to your Traefik pod (wherever it is) to expose that Service
l
lively-night-78214
12/08/2022, 10:14 AMgreat, more complex that what i used to use but these days it looks like i cant do it without Kubernetes
i think i will experiment more today and maybe look up a k3s intro video on youtube
or something
c
creamy-pencil-82913
12/08/2022, 10:15 AMServiceLB is actually pretty simple. Without it you would need to muck about with Kube-vip or metallb or something
l
lively-night-78214
12/08/2022, 10:15 AMand each app deployment can deploy its LB right ?
ie even if i run multiple apps on the same 80/443 ports
interesting how some names in labelling still uses
cattlec
creamy-pencil-82913
12/08/2022, 10:19 AMYou can only use a port on a single service. If you try to use the same port for another service it will hang in pending until the other thing using the port goes away
If you want to have multiple domains or something behind a single host, the normal way to do that would be to use an Ingress resource to describe the routing of the request to a cluster service based on the hostname
l
lively-night-78214
12/08/2022, 10:21 AMok so i indeed need an ingress
c
creamy-pencil-82913
12/08/2022, 10:25 AMyou have an ingress controller in Traefik. you need to create ingress resources to tell it how to forward requests to your services.
l
lively-night-78214
12/08/2022, 10:26 AMi remember ingress indeed. I had not clue though of this difference between Service LB and Ingress
again thank you
time to play a bit more
c
creamy-pencil-82913
12/08/2022, 10:27 AMServices are layer 3, Ingresses are layer 7.
You need both for things to work, if you’re doing it right
l
lively-night-78214
12/08/2022, 10:31 AMi think i will need to spend sometime around these pages once i fix this TLS issue
one of the other problems once i work this out is converting my Rancher 1.x apps to k3s
c
creamy-pencil-82913
12/08/2022, 10:35 AMoh yeah, 1.x is basically docker on steroids right? thats before my time.
l
lively-night-78214
12/08/2022, 10:47 AMLol yes it is but you dont need to mess around more inception and other contexts that k8s brings
i still dont know how i will achieve parity
i am a bit reluctant to switch from docker-compose to anything else