Application Gateway and Azure Kubernetes services using backend with https:443

thanakrit rungchatkamol 1 Reputation point
2024-10-15T03:38:42.6233333+00:00

Hi All,

I would like to change AKS backend services using port from 80 to use new port to 443.

i tried with this apply yaml.

apiVersion: v1 kind: Service metadata:   name: my-internal-aks-service   namespace: default   annotations:     service.beta.kubernetes.io/azure-load-balancer-internal: "true"  # This annotation specifies an internal load balancer spec:   type: LoadBalancer   selector:     app: my-app   ports:    

  • protocol: TCP       port: 443              # External port (ILB front-end)       targetPort: 443         # Port on the container (service back-end)

I seen services in AKS created with port 443 but, when i add backend pool in Azure Application Gateway to that port 443. it not working.

in the Application Gateway backend health show error about block access to port 443.

I am not sure in case the Application Gateway routes to the AKS backend service using port 443, how should I configure or set up in AKS and Application Gateway to make it work with services port 443?

BR,

Thanakrit

Azure Kubernetes Service (AKS)
Azure Kubernetes Service (AKS)
An Azure service that provides serverless Kubernetes, an integrated continuous integration and continuous delivery experience, and enterprise-grade security and governance.
2,153 questions
{count} votes

1 answer

Sort by: Most helpful
  1. Nikhil Duserla 2,830 Reputation points Microsoft Vendor
    2024-10-17T13:01:52.79+00:00

    Hi @thanakrit rungchatkamol,

    Thank you for sharing the information.

    Changing the port from 80 to 443 won't fulfill your needs. We recommend setting up the Ingress controller add-on for your AKS cluster using an Application Gateway instance.

    Please visit the links below for more information:

    Application Gateway Ingress Controller (AGIC)-https://learn.microsoft.com/en-us/azure/application-gateway/ingress-controller-overview

    Enable the ingress controller add-on for a new AKS cluster with a new application gateway instance-https://learn.microsoft.com/en-us/azure/application-gateway/tutorial-ingress-controller-add-on-new

    Enable application gateway ingress controller add-on for an existing AKS cluster with an existing application gateway-https://learn.microsoft.com/en-us/azure/application-gateway/tutorial-ingress-controller-add-on-existing

    If you have any further queries, do let us know.

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.