Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Accessing External Services

Tags:

kubernetes

I have a node outside of my Kubernetes cluster running a web service that I need to access from inside a Pod. The documentation mentions using a Service without a Selector here: http://kubernetes.io/docs/user-guide/services/

So I created a service like so:

{
    "kind": "Service",
    "apiVersion": "v1",
    "metadata": {
        "name": "my-service"
    },
    "spec": {
        "ports": [
            {
                "protocol": "TCP",
                "port": 8082,
                "targetPort": 8082
            }
        ]
    }
}

Then created my endpoint:

{
    "kind": "Endpoints",
    "apiVersion": "v1",
    "metadata": {
        "name": "my-service"
    },
    "subsets": [
        {
            "addresses": [
                { "ip": "128.115.198.7" }
            ],
            "ports": [
                { "port": 8082 }
            ]
        }
    ]
}

Test App:

apiVersion: v1
kind: Pod
metadata:
  name: ta-p
spec:
  restartPolicy: Never
  containers:
  - name: ta-c
    image: "centos:7"
    command: ["/bin/bash","-c", "sleep 100000"]
  nodeSelector:
    node: "kube-minion-1"

Remote into Pod doing:

kubectl exec ta-p -c ta-c -i --tty -- /bin/bash

Then whenever I kubectl exec into a container in my pod and try to ping or curl my-service like so:

curl http://my-service/api/foo

it times out. I have verified DNS is setup and working correctly. However, I have even tried using the IP address directly bound to the service:

curl http://10.0.124.106:8082/api/foo

Anyone have any suggestions?

like image 713
tbs Avatar asked Mar 15 '16 00:03

tbs

People also ask

How do I access external services in Kubernetes?

Ways to connect You have several options for connecting to nodes, pods and services from outside the cluster: Access services through public IPs. Use a service with type NodePort or LoadBalancer to make the service reachable outside the cluster. See the services and kubectl expose documentation.

Which resource can you use to make external services part of your service mesh?

Configuring Envoy to allow access to any external service. Use a service entry to register an accessible external service inside the mesh. This is the recommended approach.

What is passthrough cluster?

Option 1 - Passthrough An Envoy cluster is a backend (or “upstream”) set of endpoints, representing an external service. The Istio sidecar Envoy proxy applies filters to intercepted requests from an application container. Based on these filters, Envoy sends traffic to a specific route.

1 Answers

Note: A better way to solve this now is using externalName on the Service. This will add a CNAME record to the internal Kubernetes DNS: https://github.com/kubernetes/community/blob/master/contributors/design-proposals/network/service-external-name.md

This feature was shipped with Kubernetes 1.4.

like image 173
Frederic Avatar answered Oct 02 '22 00:10

Frederic
Sign in to Comment

Related questions

s3 proxy on kubernetes using Ingress
Kubernetes's Ingress annotations for x509 certificate authentificate
Accessing Kubernetes API via Kubernetes Dashboard Host
Is this possible to schedule CronJob to execute on each of Kubernetes nodes?
UnknownHostException in kubernetes
Is it possible to deploy a GUI application using Kubernetes?
Difference between kubectl and minikube-kubectl
How does Kubernetes Horizontal Pod Autoscaler calculate CPU Utilization for Multi Container Pods?
Custom helm chart requires another stable/chart
How to configure Cloudflare app in Grafana from code?
Can't connect to MariaDB by hostname within a Kubernetes cluster
Kubernetes AntiAffinity - limit max number of same pods per node
Kubernetes DNS no longer resolving names
helm templating with toYaml
Istio authorization policy not applying on child gateway
How to use tqdm in Kubernetes
What are the practical differences between an IP vs instance based target types for an AWS NLB?
Adding nameservers to kubernetes
Scaling Docker containers in the real world
Connecting to a MySQL container in the same pod

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!