2017-10-13 10:55:03 -03:00
|
|
|
kind: Service
|
|
|
|
|
apiVersion: v1
|
|
|
|
|
metadata:
|
|
|
|
|
name: ingress-nginx
|
|
|
|
|
annotations:
|
2018-02-08 11:15:50 +08:00
|
|
|
# replace with the correct value of the generated certificate in the AWS console
|
2018-08-22 15:37:22 +02:00
|
|
|
service.beta.kubernetes.io/aws-load-balancer-ssl-cert: "arn:aws:acm:us-west-2:XXXXXXXX:certificate/XXXXXX-XXXXXXX-XXXXXXX-XXXXXXXX"
|
2017-10-13 10:55:03 -03:00
|
|
|
# the backend instances are HTTP
|
|
|
|
|
service.beta.kubernetes.io/aws-load-balancer-backend-protocol: "http"
|
|
|
|
|
# Map port 443
|
|
|
|
|
service.beta.kubernetes.io/aws-load-balancer-ssl-ports: "https"
|
2018-09-05 21:14:07 -07:00
|
|
|
# Ensure the ELB idle timeout is less than nginx keep-alive timeout. By default,
|
|
|
|
|
# NGINX keep-alive is set to 75s. If using WebSockets, the value will need to be
|
|
|
|
|
# increased to '3600' to avoid any potential issues.
|
2018-09-26 10:15:57 -03:00
|
|
|
service.beta.kubernetes.io/aws-load-balancer-connection-idle-timeout: "60"
|
2017-10-13 10:55:03 -03:00
|
|
|
spec:
|
2019-04-30 09:45:58 -07:00
|
|
|
externalTrafficPolicy: Cluster
|
