Exposing ARO cluster application on internet

Suraj Singh 5 Reputation points
2023-01-31T10:54:05.9166667+00:00

Hello

My ARO cluster deployed want to access the application over internet.

What is the best way to achieve this and practice?

Azure Red Hat OpenShift
Azure Red Hat OpenShift
An Azure service that provides a flexible, self-service deployment of fully managed OpenShift clusters.
67 questions
{count} votes

1 answer

Sort by: Most helpful
  1. Abdul Sajid Mohammed 465 Reputation points Microsoft Employee
    2023-02-06T04:55:51.4533333+00:00

    Hello Suraj,

    To safely expose an application on an Azure Red Hat OpenShift (ARO) cluster to the internet, you can use a load balancer or a public IP address with network policies.

    For load balancer, you can create an Azure Load Balancer and configure it to route traffic to your ARO cluster. This approach is recommended if you want to use advanced features such as SSL termination or URL-based routing. You can also use network policies to control the traffic flow between pods and ensure that only authorized traffic is allowed to reach your application.

    For using a public IP address, you can assign a public IP address to your ARO cluster and configure it to route traffic to your application. This approach is simpler and more cost-effective, but it doesn't provide the same level of control and flexibility as a load balancer. In this case, you can use network policies to control the traffic flow to your application and prevent unauthorized access. Configuring network policy

    Best Practices: Network topology and connectivity considerations for Azure Red Hat OpenShift

    <<FOR ARO PRIVATE CLUSTER>>

    If your question is in regard to "ARO private cluster" then, Ingress controllers are used to enable public access to applications running on OpenShift private clusters. An ingress controller is a Kubernetes resource that manages external access to the services in a cluster, typically HTTP. It provides an external IP address that can be used to access the services in the cluster from outside the cluster. You can easily use the OpenShift web console or the oc command-line tool to create and manage ingress resources and ingress controllers in your OpenShift cluster. Please refer to this guide OpenShift documentation on ingress controllers.

    Hope this helps. Please let me know if you have any questions or more clarifications needed.

    Please "Accept as Answer" and Upvote if it helped, so that it can help others in the community looking for help on similar topics.

    Best Regards.

    0 comments No comments