Azure gateway for containers integration with Kubernetes external DNS service and lets-encrypt.

Question

Azure gateway for containers integration with Kubernetes external DNS service and lets-encrypt.

Boban Mitevski 20

Hello Team,

I would like to ask if Azure application gateway for containers can be integrated with Kubernetes external DNS service for automatic FQDN records registration as well as if it supports lets-encrypt certificates via cert-manager?

I was not able to find relevant information on this topic unfortunately.Thank you in advance.

Anveshreddy Nimmala 3,550 Reputation points Microsoft External Staff Moderator

2024-05-27T04:53:41.8133333+00:00

Hello Boban Mitevski,

Welcome to microsoft Q&A, Thankyou for posting your Query here.

Yes, you can use Azure Application Gateway Ingress Controller with Kubernetes External DNS service.AGIC runs as a pod within the AKS cluster and consumes Kubernetes Ingress Resources and converts them to an Application Gateway configuration, which allows the gateway to load-balance traffic to the Kubernetes pods.

Please find the below if it helps you for the same.

https://azure.github.io/application-gateway-kubernetes-ingress/how-tos/dns/

Hope this helps you
Boban Mitevski 20 Reputation points

2024-05-27T07:55:16.4233333+00:00

Hi Anveshreddy Nimmala,

Thank you very much for your answer. Azure application gateway ingress controller indeed supports External DNS service in K8s and cert-manager with lets encrypt but I was referring to Application gateway for containers:

https://learn.microsoft.com/en-us/azure/application-gateway/for-containers/overview

Tech blog with the difference between agic and agfc: https://techcommunity.microsoft.com/t5/apps-on-azure-blog/application-gateway-for-containers-vs-application-gateway/ba-p/3914901

For the application gateway for containers, I'm not able to find any info regarding External DNS support and lets-encrypt/cert-manager support.
Boban Mitevski 20 Reputation points

2024-05-29T14:10:31.9066667+00:00

Hi Anveshreddy Nimmala,

I would have to setup and test since there is no exact guide nor example pointing to AGFC but only to AGIC. If the AGFC CRDS support the same annotations and configuration as AGIC, it would be great.

Thank you very much for the help!
Anveshreddy Nimmala 3,550 Reputation points Microsoft External Staff Moderator

2024-05-29T16:37:10.67+00:00

Hello Boban Mitevski,

Thankyou for updating , hope this works for you , we will looking forward for your results

1 answer

Your answer

Anveshreddy Nimmala 3,550 Reputation points Microsoft External Staff Moderator

2024-05-27T04:53:41.8133333+00:00

Hello Boban Mitevski,

Welcome to microsoft Q&A, Thankyou for posting your Query here.

Yes, you can use Azure Application Gateway Ingress Controller with Kubernetes External DNS service.AGIC runs as a pod within the AKS cluster and consumes Kubernetes Ingress Resources and converts them to an Application Gateway configuration, which allows the gateway to load-balance traffic to the Kubernetes pods.

Please find the below if it helps you for the same.

https://azure.github.io/application-gateway-kubernetes-ingress/how-tos/dns/

Hope this helps you
Boban Mitevski 20 Reputation points

2024-05-27T07:55:16.4233333+00:00

Hi Anveshreddy Nimmala,

Thank you very much for your answer. Azure application gateway ingress controller indeed supports External DNS service in K8s and cert-manager with lets encrypt but I was referring to Application gateway for containers:

https://learn.microsoft.com/en-us/azure/application-gateway/for-containers/overview

Tech blog with the difference between agic and agfc: https://techcommunity.microsoft.com/t5/apps-on-azure-blog/application-gateway-for-containers-vs-application-gateway/ba-p/3914901

For the application gateway for containers, I'm not able to find any info regarding External DNS support and lets-encrypt/cert-manager support.
Boban Mitevski 20 Reputation points

2024-05-29T14:10:31.9066667+00:00

Hi Anveshreddy Nimmala,

I would have to setup and test since there is no exact guide nor example pointing to AGFC but only to AGIC. If the AGFC CRDS support the same annotations and configuration as AGIC, it would be great.

Thank you very much for the help!
Anveshreddy Nimmala 3,550 Reputation points Microsoft External Staff Moderator

2024-05-29T16:37:10.67+00:00

Hello Boban Mitevski,

Thankyou for updating , hope this works for you , we will looking forward for your results

Answer 1

Hello Boban Mitevski,

External DNS with Kubernetes can be possible is possible to setup, which can work with AGFC in a similar manner to Application Gateway setups.

This integration allows you to automatically create DNS records in your DNS provider like Azure DNS, based on Kubernetes resources like Ingress objects.

https://learn.microsoft.com/en-us/azure/aks/ingress-basic?tabs=azure-cli

For AGFC, you can try utilizing cert-manager to obtain and renew certificates from Let's Encrypt, just as you would with the traditional Azure Application Gateway Ingress Controller

https://learn.microsoft.com/en-us/azure/application-gateway/ingress-controller-letsencrypt-certificate-application-gateway

Hope this helps you.

Share via

Azure gateway for containers integration with Kubernetes external DNS service and lets-encrypt.

1 answer

Your answer