fortiweb_ingress_ctlr

command module

v0.0.0-...-351ab97 Latest Latest Go to latest Published: Oct 5, 2018 License: Apache-2.0 Imports: 16 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/fortinet-solutions-cse/fortiweb_ingress_ctlr

Links

Open Source Insights

README ¶

Kubernetes Ingress controller for FortiWeb

Instructions

Install Docker in Docker

Use this repo: https://github.com/kubernetes-sigs/kubeadm-dind-cluster
wget https://cdn.rawgit.com/kubernetes-sigs/kubeadm-dind-cluster/master/fixed/dind-cluster-v1.8.sh
chmod +x dind-cluster-v1.8.sh
./dind-cluster-v1.8.sh up

External connectivity to port apiserver in port 8001

sudo sysctl -w net.ipv4.conf.ens160.route_localnet=1
sudo iptables -t nat -I PREROUTING -p tcp --dport 8001 -j DNAT --to-destination 127.0.0.1:8080

Dashboard

Access this url:

http://ip:8080/api/v1/namespaces/kube-system/services/kubernetes-dashboard:/proxy/#!/deployment?namespace=default

Deploy a service and expose it

kubectl run forum-webserver --image=gcr.io/google-samples/kubernetes-bootcamp:v1 --port=8080 -r=1
kubectl run image-webserver --image=docker.io/tutum/hello-world --port=80 -r=1
kubectl run fwb-docker --image=docker.io/fortiweb/v601:0029 -r=1

kubectl expose deployment/forum-webserver --type="NodePort" --port 8080 --selector='run=forum-webserver'
kubectl expose deployment/image-webserver --type="NodePort" --port 80 --selector='run=image-webserver'

For NodePort we need to create a file since CLI does not offer so many options:

cat >NodePortSpec.yml<<EOF
apiVersion: v1
kind: Service
metadata:
  name: fwb-service-mgmt
spec:
  type: NodePort
  ports:
  - port: 8080
    targetPort: 8
    nodePort: 32200
    protocol: TCP 
  selector:
    run: fwb-docker
EOF

kubectl apply -f NodePortSpec.yml

Check Services and Pods

kubectl get services
kubectl get pods
kubectl get services/forum-webserver -o go-template='{{(index .spec.ports 0).nodePort}}'

Deploy FortiWeb

Please use: https://github.com/fortinet-solutions-cse/testbeds

Use fortinet-solutions-cse/testbeds/fortiweb

wget https://raw.githubusercontent.com/fortinet-solutions-cse/testbeds/master/fortiweb/start_fwb_k8s.sh
chmod +x ./start_fwb_k8s.sh
./start_fwb_k8s.sh <fortiweb_kvm_qcow2_image>

Change http port in FortiWeb to other than 80

Change the setting in System/Admin/Settings/HTTP

Create an ingress resource in K8S

kubectl apply -f ingress_example_demo.yaml
kubectl get ingress
kubectl describe ingress

Access pods

kubectl get pods
kubectl exec -it forum-webserver-d4f956cbc-v88lz bash

Execute requests to fetch data from different services

wget --header "Host:foo.com" -O - http://192.168.122.40/path1
wget --header "Host:foo.com" -O - http://192.168.122.40/path2
wget --header "Host:bar.com" -O - http://192.168.122.40/path3
wget --header "Host:bar.com" -O - http://192.168.122.40/path1

Documentation ¶

There is no documentation for this package.

Source Files ¶

View all Source files

ingress_controller.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL