Comments (7)
Don't worry, it's not about Terraform. Everything happens in templates/traefik_config.yaml.tpl , as you mentioned above.
Basically, you are dealing with a HelmChartConfig, and you want to add another entrypoint, so find how you do that with the Traefik Helm Values file, and add those values in the HelmChartConfig template above.
The section you probably want to add/and customize is the ports
section here.
In the screenshot, you can see that ports
is a sister key to additionalArguments
(they are on the same level), so do the same, just copy-paste the whole ports section in the HelmChartConfig, and add the entrypoints for your game servers there, on ports other than the ones already used.
Last but not least, add the same additionalArguments
for them, to allow proxy protocols.
from terraform-hcloud-kube-hetzner.
Awesome, will try that later, thank you so much!
from terraform-hcloud-kube-hetzner.
Hey @MartiniMoe, you just need to open the incoming port on the Hetzner firewall in the project where your Kube cluster lives. As for the load balancer, it does not come into the picture here. A NodePort is an opening directly on a node, so no interaction whatsoever with the LB.
Basically, you open the port on the Hetzner Firewall, then create the NodePort, and you should be able to hit the service with the Node IP directly, and the externally specified port in Kube (same as in the firewall).
It's been a long time I have not done this, but that should be the case. Nowadays, I just use Ingress through the LB for everything.
from terraform-hcloud-kube-hetzner.
But then you can't use - for example - the default ports of dedicated game servers, right? Because everything goes over Port 80 or 443, right?
from terraform-hcloud-kube-hetzner.
Yes, you could, you are not at all limited to HTTP or SSL, you can open any port you wish as a NodePort, open a hole in the firewall, and that's it.
Now you could also do the same with your Traefik ingress controller, as unlike Nginx it's not limited to the two ports above either, it can do any TCP or even UDP ports. Again, you never ever touch the LB manually, Traefik has everything it needs thanks to the proxy protocol comms it has with the LB.
from terraform-hcloud-kube-hetzner.
Thanks! If I would do it with a Traefik Ingress I would define another entrypoint in templates/traefik_config.yaml.tpl for that port, right?
The thing is I do not understand until now how port 80 and 443 are mapped to the existing entrypoints web and websecure. Maybe I should just get more into terraform for the moment...
from terraform-hcloud-kube-hetzner.
Hey @MartiniMoe, will close this, but if you have any more questions, do not hesitate to continue the discussion here.
from terraform-hcloud-kube-hetzner.
Related Issues (20)
- Multiple additional SSH keys with labels on re-apply HOT 1
- Cluster-autoscaler doesn't work, fails on get request to get key because of TLS error HOT 1
- [Bug]: remote-exec provisioner error HOT 22
- [Feature Request]: Using control planes and nodes together. i.e. make every control plane also an agent with Longhorn HOT 7
- Control planes or nodes getting unavailable over ssh HOT 1
- [Bug]: Trying to follow the script through WSL but getting error: "stat hcloud-microos-snapshots.pkr.hcl: no such file or directory" HOT 1
- [Bug]: Process `/usr/local/bin/k3s` could not be executed while applying terraform script HOT 8
- [Bug]: When specifing custom namespace for ingress (traefik) controller, hanging waiting for deployment HOT 1
- [Bug]: Stuck at "waiting for the condition on deployments/system-upgrade-controller" (cilium pod stuck) HOT 5
- [Bug]: "waiting for the k3s server to start" HOT 14
- Fail to write to /var/post_install/kustomization.yaml HOT 5
- Issue creating snapshots HOT 16
- Placement group contains already 10 servers HOT 24
- [Bug]: Timeout waiting for system-upgrade-controller HOT 7
- [Feature Request]: Outputs for Kubernetes Terraform provider HOT 9
- When ingress_controller = "none" a Traefik instance is still deployed and running on nodes HOT 4
- Cloud Volume Fails To Mount With RWX HOT 6
- Invalid SSH identity files HOT 1
- Make it possible to run kured on ARM nodes or allow disabling kured (to install it externally from helm) HOT 1
- Remove lock ttl from the kured defaults HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from terraform-hcloud-kube-hetzner.