I need help with setting up TLS termination (using ingress-nginx) for two services in different backends. Basically, the idea is to go with:
https://some.url.here/serviceOne/ -> http://hostOne/
https://some.url.here/serviceTwo/ -> http://hostTwo/someServiceNameHere/
I tried doing it with rewrite-target: "/", rewrite-target: "/$1", and use-regexp: "true", but connecting to http://hostTwo/someServiceNameHere/ constantly fails.
My ingress definition looks like this:
kind: Ingress
metadata:
name: rp-some-url-here
namespace: reverse-proxy
annotations:
kubernetes.io/ingress.class: nginx
# ??? nginx.ingress.kubernetes.io/rewrite-target: "/$1"
# ??? nginx.ingress.kubernetes.io/use-regex: "true"
nginx.ingress.kubernetes.io/backend-protocol: "HTTP"
nginx.ingress.kubernetes.io/proxy-ssl-verify: "false"
nginx.ingress.kubernetes.io/upstream-vhost: "some.url.here"
nginx.ingress.kubernetes.io/proxy-connect-timeout: "600"
nginx.ingress.kubernetes.io/proxy-send-timeout: "600"
nginx.ingress.kubernetes.io/proxy-read-timeout: "600"
# proxy-buffering is now disabled by default,
# just having it here for reference
nginx.ingress.kubernetes.io/proxy-buffering: "off"
spec:
tls:
- hosts:
- some.url.here
secretName: my-tls-secret
rules:
- host: some-url-here
http:
paths:
- backend:
service:
name: serviceOne
port:
number: 80
# path: /serviceOne # using this with rewrite-target
path: /serviceOne/.*
pathType: Prefix
- backend:
service:
name: serviceTwo
port:
number: 8180
# path: /serviceTwo # using this with rewrite-target
path: /serviceTwo/.*
pathType: Prefix
Service definition is as simply as
---
apiVersion: v1
kind: Service
metadata:
name: service-one
namespace: reverse-proxy
spec:
type: ExternalName
externalName: some.hostname.here
---
apiVersion: v1
kind: Service
metadata:
name: service-two
namespace: reverse-proxy
spec:
type: ExternalName
externalName: another.hostname.here
