創建測試證書
openssl genrsa -out nginx.key 2048
openssl req -new -x509 -key nginx.key -out nginx.crt -subj /C=CN/ST=Beijing/L=Beijing/O=ssltest/CN=www.test.com
其中CN=www.test.com
爲想要訪問的域名
創建secret
kubectl create secret tls nginx-secret --cert=nginx.crt --key=nginx.key
編寫ingress yaml文件
apiVersion: networking.k8s.io/v1beta1
kind: Ingress
metadata:
name: nginx-ingress
spec:
tls:
- hosts:
- www.test.com
secretName: nginx-secret
rules:
- host: www.test.com
http:
paths:
- path: /
backend:
serviceName: nginx
servicePort: 80
驗證
解析node主機域名問www.test.com然後在瀏覽器中訪問