AKS CNI OVERLAY CANNOT CREATE INGRESS WITH INTERNAL IP

Question

AKS CNI OVERLAY CANNOT CREATE INGRESS WITH INTERNAL IP

Angelos Papadopoulos 0

Hello,

I create an azure kubenetes service with cni overlay and i configure the nginx with the below specs:

helm install ingress-nginx ingress-nginx/ingress-nginx \
                          --namespace ingress-basic \
                          --set controller.replicaCount=2 \
                           --set controller.service.annotations."service\.beta\.kubernetes\.io/azure-load-balancer-internal"=true \
                          --set controller.service.loadBalancerIP=10.1.208.59 \
                          --set controller.service.annotations."service\.beta\.kubernetes\.io/azure-load-balancer-health-probe-request-path"=/healthz

Even i try to set a specific ip for the loadbalacer the loadbacer always created with public ip.

Is there any restriction with kubernets cni overlay and nginx?only public ip can used?

thanks in advance,

deherman-MSFT 38,021 Reputation points Microsoft Employee Moderator

2023-06-20T20:51:18.27+00:00

@Angelos Papadopoulos

If you still have questions, please let us know in the "comments" and we would be happy to help you. Comment is the fastest way of notifying the experts.

If the answer has been helpful, we appreciate hearing from you and would love to help others who may have the same question. Accepting answers helps increase visibility of this question for other members of the Microsoft Q&A community.

Thank you for helping to improve Microsoft Q&A!
deherman-MSFT 38,021 Reputation points Microsoft Employee Moderator

2023-06-27T18:22:04.8933333+00:00

@Angelos Papadopoulos

If you still have questions, please let us know in the "comments" and we would be happy to help you. Comment is the fastest way of notifying the experts.

If the answer has been helpful, we appreciate hearing from you and would love to help others who may have the same question. Accepting answers helps increase visibility of this question for other members of the Microsoft Q&A community.

Thank you for helping to improve Microsoft Q&A!

2 answers

Your answer

deherman-MSFT 38,021 Reputation points Microsoft Employee Moderator

2023-06-20T20:51:18.27+00:00

@Angelos Papadopoulos

If you still have questions, please let us know in the "comments" and we would be happy to help you. Comment is the fastest way of notifying the experts.

If the answer has been helpful, we appreciate hearing from you and would love to help others who may have the same question. Accepting answers helps increase visibility of this question for other members of the Microsoft Q&A community.

Thank you for helping to improve Microsoft Q&A!
deherman-MSFT 38,021 Reputation points Microsoft Employee Moderator

2023-06-27T18:22:04.8933333+00:00

@Angelos Papadopoulos

If you still have questions, please let us know in the "comments" and we would be happy to help you. Comment is the fastest way of notifying the experts.

If the answer has been helpful, we appreciate hearing from you and would love to help others who may have the same question. Accepting answers helps increase visibility of this question for other members of the Microsoft Q&A community.

Thank you for helping to improve Microsoft Q&A!

Answer 1

Hi @Angelos Papadopoulos ,

Thank you for your question.

Please note that the network overlay type does not affect Nginx/Load Balancer IP services.

The command you have shared works as expected, it is setting the needed annotation in the LB service to an internal IP.

Can you please share screenshots of the service being created. Mainly the output of kubectl describe svc ingress-nginx-controller -n ingress-basic

Please make sure to use an IP from the AKS subnet range if you want to set the private IP manually.

Thank you.

Answer 2

Deleted

This answer has been deleted due to a violation of our Code of Conduct. The answer was manually reported or identified through automated detection before action was taken. Please refer to our Code of Conduct for more information.

Comments have been turned off. Learn more

Share via

AKS CNI OVERLAY CANNOT CREATE INGRESS WITH INTERNAL IP

2 answers

Your answer