External LB to K8s? #5
Comments
|
I just found https://github.com/zevenet/kube-nftlb/blob/master/pkg/auth/auth.go#L24 so I should be able to supply the kubeconfig path on the command line. So I should be able to run this on an external node, provided that it can reach the Pod network. DNat should theoretically work, provided that the default GW for the pod networks are this LB machine, yeah? (otherwise, source nat should work, yeah?) |
|
hi @rrichardson, |
|
Hi @cano-devel can kube-nftb be used as an external load balancer in the same metallb is used or is this a replacement for kube-proxy? |
|
(Someone please correct me if I have any of this wrong) kube-nftlb is more of a port-forwarding with NAT (or direct server return) - It can be used for the above use-case, but instead of binding to a virtual nic, I think it just forwards the ports on whatever host it is running. It can be used to create a path from an outer network into Kubernetes' inner "private" service and pod networks |
We have k8s set up as a pure ipv6 network where each host has it's own private ipv6 network.
I would like to set up an external LB that can direct requests to pods for (say) an ingress controller
The pod networks are reachable from the LB machine.
Is there a way to start kube-nftlb in this configuration?
Basically I think the only change vs what the docs currently describe is I'd need to specify where kube-nftlb should find the kubeconfig so that it can communicate with the API server(s)
The text was updated successfully, but these errors were encountered: