Title: Switch nginx ingress to use NLB · Issue #184 · commitdev/zero-aws-eks-stack · GitHub
Open Graph Title: Switch nginx ingress to use NLB · Issue #184 · commitdev/zero-aws-eks-stack
X Title: Switch nginx ingress to use NLB · Issue #184 · commitdev/zero-aws-eks-stack
Description: The current setup uses ELB for the nginx ingress controller, but there would be some benefits to switching over to NLB: With the current setup we don't get remote IPs in nginx logs We are already using L4 only on the ELB so why not, when...
Open Graph Description: The current setup uses ELB for the nginx ingress controller, but there would be some benefits to switching over to NLB: With the current setup we don't get remote IPs in nginx logs We are already u...
X Description: The current setup uses ELB for the nginx ingress controller, but there would be some benefits to switching over to NLB: With the current setup we don't get remote IPs in nginx logs We are alrea...
Opengraph URL: https://github.com/commitdev/zero-aws-eks-stack/issues/184
X: @github
Domain: github.com
{"@context":"https://schema.org","@type":"DiscussionForumPosting","headline":"Switch nginx ingress to use NLB","articleBody":"The current setup uses ELB for the nginx ingress controller, but there would be some benefits to switching over to NLB:\n- With the current setup we don't get remote IPs in nginx logs\n- We are already using L4 only on the ELB so why not, when NLB is better and more efficient at handling it.\n\n\nThe change should be straightforward, it will just require some testing.\n\nThese annotations need to be added to the ingress service:\n```\n service.beta.kubernetes.io/aws-load-balancer-type: nlb\n service.beta.kubernetes.io/aws-load-balancer-backend-protocol: tcp\n service.beta.kubernetes.io/aws-load-balancer-connection-idle-timeout: '60'\n service.beta.kubernetes.io/aws-load-balancer-cross-zone-load-balancing-enabled: 'true'\n```\n\nThe nginx default keepalive timeout is 75s but let's also specify that explicitly in the code, maybe with a comment telling people that the lb timeout must be shorter than the nginx keepalive.\n\nAfter this change, make sure that the nginx logs show the proper remote IP address, not an internal `10.` address.\nMake sure TLS still works properly. \n","author":{"url":"https://github.com/bmonkman","@type":"Person","name":"bmonkman"},"datePublished":"2021-03-03T02:00:21.000Z","interactionStatistic":{"@type":"InteractionCounter","interactionType":"https://schema.org/CommentAction","userInteractionCount":3},"url":"https://github.com/184/zero-aws-eks-stack/issues/184"}| route-pattern | /_view_fragments/issues/show/:user_id/:repository/:id/issue_layout(.:format) |
| route-controller | voltron_issues_fragments |
| route-action | issue_layout |
| fetch-nonce | v2:20736c10-61d7-86ce-6ee5-9e86904eac27 |
| current-catalog-service-hash | 81bb79d38c15960b92d99bca9288a9108c7a47b18f2423d0f6438c5b7bcd2114 |
| request-id | 81CC:57B72:AC0804:EF9A9B:69820603 |
| html-safe-nonce | d77725f1c108d5719a12b4d3cd358d77be602acff24ec40d06f3304463b5663a |
| visitor-payload | eyJyZWZlcnJlciI6IiIsInJlcXVlc3RfaWQiOiI4MUNDOjU3QjcyOkFDMDgwNDpFRjlBOUI6Njk4MjA2MDMiLCJ2aXNpdG9yX2lkIjoiNDE2NDI4NzczMzc2MzgwMjYyNyIsInJlZ2lvbl9lZGdlIjoiaWFkIiwicmVnaW9uX3JlbmRlciI6ImlhZCJ9 |
| visitor-hmac | 38fd61236f13003fc2a77741c0061a232ac051383842758e4777acd552777e84 |
| hovercard-subject-tag | issue:820549278 |
| github-keyboard-shortcuts | repository,issues,copilot |
| google-site-verification | Apib7-x98H0j5cPqHWwSMm6dNU4GmODRoqxLiDzdx9I |
| octolytics-url | https://collector.github.com/github/collect |
| analytics-location | / |
| fb:app_id | 1401488693436528 |
| apple-itunes-app | app-id=1477376905, app-argument=https://github.com/_view_fragments/issues/show/commitdev/zero-aws-eks-stack/184/issue_layout |
| twitter:image | https://opengraph.githubassets.com/4a3be989f41ec66ac31789db037b8e41f0b32d3cc5559772a04cc5cc1a22cb2e/commitdev/zero-aws-eks-stack/issues/184 |
| twitter:card | summary_large_image |
| og:image | https://opengraph.githubassets.com/4a3be989f41ec66ac31789db037b8e41f0b32d3cc5559772a04cc5cc1a22cb2e/commitdev/zero-aws-eks-stack/issues/184 |
| og:image:alt | The current setup uses ELB for the nginx ingress controller, but there would be some benefits to switching over to NLB: With the current setup we don't get remote IPs in nginx logs We are already u... |
| og:image:width | 1200 |
| og:image:height | 600 |
| og:site_name | GitHub |
| og:type | object |
| og:author:username | bmonkman |
| hostname | github.com |
| expected-hostname | github.com |
| None | f4cb77e7923981a0a29ff46912061418d80b11552a75801d8d7c2ee8194cdf49 |
| turbo-cache-control | no-preview |
| go-import | github.com/commitdev/zero-aws-eks-stack git https://github.com/commitdev/zero-aws-eks-stack.git |
| octolytics-dimension-user_id | 44272088 |
| octolytics-dimension-user_login | commitdev |
| octolytics-dimension-repository_id | 247773730 |
| octolytics-dimension-repository_nwo | commitdev/zero-aws-eks-stack |
| octolytics-dimension-repository_public | true |
| octolytics-dimension-repository_is_fork | false |
| octolytics-dimension-repository_network_root_id | 247773730 |
| octolytics-dimension-repository_network_root_nwo | commitdev/zero-aws-eks-stack |
| turbo-body-classes | logged-out env-production page-responsive |
| disable-turbo | false |
| browser-stats-url | https://api.github.com/_private/browser/stats |
| browser-errors-url | https://api.github.com/_private/browser/errors |
| release | c1e70b4927b942b903c1a0c1413d4c4f701459ad |
| ui-target | full |
| theme-color | #1e2327 |
| color-scheme | light dark |
Links:
Viewport: width=device-width