You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: content/nginxaas-azure/quickstart/loadbalancer-kubernetes.md
+14Lines changed: 14 additions & 0 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -71,6 +71,7 @@ The steps in this section must be completed once for each new setup. We will ins
71
71
72
72
{{<note>}}
73
73
The data plane API key has the following requirements:
74
+
74
75
- The key should have an expiration date. The default expiration date is six months from the date of creation. The expiration date cannot be longer than two years from the date of creation.
75
76
- The key should be at least 12 characters long.
76
77
- The key requires three out of four of the following types of characters:
@@ -184,6 +185,7 @@ You can also install the NLK controller AKS extension by navigating to [F5 NGINX
184
185
- On the **Basics** tab, provide the following information:
| Cluster extension resource name | Provide a name for the NLK controller. |
@@ -247,10 +250,18 @@ Expose a Kubernetes `Service` to route traffic to your workload. The `Service`
247
250
- Choose one of the following `Service` types:
248
251
-`NodePort`: To route external traffic into the cluster using a well defined port exposed on each AKS worker node.
249
252
-`ClusterIP`: To route traffic to pods directly if you are running an Azure Container Networking Interface (CNI) that lets you expose the pods on the Azure VNET.
253
+
-`LoadBalancer`: To route traffic to the cluster's external load balancer. The load balancer routes traffic into the cluster as normal.
250
254
- The port name must be formatted as `{{NGINX Context}}-{{NGINX upstream name}}`. For example:
251
255
- If the upstream is in the `http` context and named `my-service` then the name is `http-my-service`
252
256
- If the upstream is in the `stream` context and named `jet` then the port name is `stream-jet`
253
257
258
+
{{< note >}}
259
+
**NGINX Ingress Controller users**: with v5.0.0 and upwards, if you wish to route traffic from your NGINXaaS deployment to your NGINX Ingress Controller service, please make the following changes to your helm chart values:
260
+
261
+
- Add `"nginx.com/nginxaas": "nginxaas"` to the NGINX Ingress Controller service annotations.
262
+
- Modify the `service.httpPort.name` or `service.httpsPort.name` values to provide the expected port name format, as above.
263
+
{{</ note >}}
264
+
254
265
The following example uses a service of type `NodePort`:
255
266
256
267
```yaml
@@ -331,6 +342,7 @@ flowchart TB
331
342
```
332
343
333
344
{{<note>}}
345
+
334
346
- Configuring multiple NLK controllers to update the same upstream isn't supported and will result in unpredictable behavior.
335
347
{{</note>}}
336
348
@@ -341,6 +353,7 @@ Multiple NLK controllers can be installed in the same AKS cluster to update sepa
341
353
Each NLK needs a unique helm release name and needs a unique helm value for `nlk.config.serviceAnnotationMatch`. Each NLK will only watch services that have the matching annotation.
342
354
343
355
{{<note>}}
356
+
344
357
- Consider using `helm` to install multiple NLK controllers on an AKS cluster. Installing multiple copies of the controller on the same AKS cluster is not supported via the [AKS Extension](https://azuremarketplace.microsoft.com/en-us/marketplace/apps/f5-networks.f5-nginx-for-azure-aks-extension?tab=overview).
345
358
{{</note>}}
346
359
@@ -361,6 +374,7 @@ The logs can be made more verbose by setting the Helm value `nlk.config.logLevel
361
374
NGINXaaS supports exporting dynamic upstream update logs to an Azure Storage account or to a Log Analytics workspace.
362
375
363
376
To setup logging:
377
+
364
378
1. Select **Diagnostic settings** under **Monitoring**.
365
379
1. Select **Add diagnostic setting**.
366
380
1. On the following panel, provide a **Diagnostic setting name**.
@@ -95,15 +97,15 @@ The following table shows the NGINX App Protect WAF Release version and its corr
95
97
Install the WAF compiler, then restart the `nms-integrations` service:
96
98
97
99
```bash
98
-
sudo apt-get install nms-nap-compiler-v5.264.0
100
+
sudo apt-get install nms-nap-compiler-v5.342.0
99
101
```
100
102
101
103
{{<note>}}
102
104
103
105
- If you want to have more than one version of the `nms-nap-compiler` installed on your system at once, you'll need to append `-o Dpkg::Options::="--force-overwrite"` to the `nms-nap-compiler` installation commands after your initial `nms-nap-compiler` installation. For example, the installation command would look like this:
0 commit comments