Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Google cloud CDN, storage and container engine issue with backend-service

Tags:

cdn

gcloud

google-kubernetes-engine

I have a specific use case that I can not seem to solve.

A typical gcloud setup:

  • A K8S cluster

  • A gcloud storage bucket

  • A gcloud loadbalancer

I managed to get my domain https://cdn.foobar.com/uploads/ to points to a google storage backend without any issue: I can access files. Its the backend service one that fails.

I would like the CDN to act as a cache, when a HTTP request hits it such as https://cdn.foobar.com/assets/x.jpg, if it does not have a copy of the asset it should query an other domain https://foobar.com/assets/x.jpg.

I understood that this what was load balancers backend-service were for. (Right?)

The backend-service is pointing to the instance group of the k8s cluster and requires a port. I guessed that I needed to allow the firewall to expose the Nodeport of my web application service for the loadbalancer to be able to query it.

Cloud CDN

enter image description here

enter image description here

Load balancing

Failing health-checks.

enter image description here

The backend service is pointing to the instance group of the k8s cluster and requires some ports (default 80?) 80 failed. I guessed that I needed to allow the firewall to expose the 32231 Nodeport of my web application service for the loadbalancer to be able to query it. That still failed with a 502.

?> kubectl describe svc Name: backoffice-service Namespace: default Labels: app=backoffice Selector: app=backoffice Type: NodePort IP: 10.7.xxx.xxx Port: http 80/TCP NodePort: http 32231/TCP Endpoints: 10.4.x.x:8500,10.4.x.x:8500 Session Affinity: None No events.

enter image description here

I ran out of ideas at this point. Any hints int the right direction would be much appreciated.

like image 366
coulix Avatar asked Nov 08 '22 23:11

coulix

1 Answers

When deploying your service as type 'NodePort', you are exposing the service on each Node's IP, but the service is not reachable to the exterior, so you need to expose your service as 'LoadBalancer'

Since you're looking to use an HTTP(s) Load Balancer, I'll recommend using a Kubernetes Ingress resource. This resource will be in charge of configuring the HTTP(s) load balancer and the required ports that your service is using, as well as the health checks on the specified port.

Since you're securing your application, you will need to configure a secret object for securing the Ingress.

This example will help you getting started on an Ingress with TLS termination.

like image 197
Marilu Avatar answered Dec 04 '22 22:12

Marilu
Sign in to Comment

Related questions

CDN vs Homegrown Caching
Google Maps API 3 referrerNotAllowedMapError
Import External CDN in React Component
Do services like Cloudflare and Incapsula actually improve the performance of websites hosted on Windows Azure?
Avoid cryptic javascript "script error" using cdn
asp:RadioButtonList 'RepeatLayout' being ignored through CDN
How to make webpack use multiple urls for publicPath config
how to use CloudFront or any other CDN with meteor application.

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!