Attribute a static public ip for a pod in kubernetes and specify in service

Nasir

12/13/22, 7:18 AM

As per Link , we can create pods with multiples networks , if the application opens port with non-default network (eth2,3 etc) How can we expose it as service? In service yaml i do not find any way to expose the service other than default.

1 + 0

cluster

kubernetes

Score:1

Server

SYN

12/13/22, 7:39 AM

Multus allows you to attach network devices to your Pods, though we should note these interfaces are not part of our Kubernetes cluster SDN.

With Multus based devices: you would allocate IPs to your Pods, either using DHCP, static IPs, ... up to you. Bearing in mind those addresses are independent from your Kubernetes SDN.

If other containers in that cluster need to connect those endpoints, then their traffic would to leave your SDN, going through their usual default gateway, which in turn should have some knowledge of (route to) your Multus addresses subnet(s).

However, you may still create Services, designating addresses out of your SDN. This would be done by creating an Endpoints object, alongside your Service, such as:

---
apiVersion: v1
kind: Endpoints
metadata:
  name: svc-out-sdn
  namespace: ns
subsets:
- addresses:
  - ip: 10.0.0.1
  ports:
  - name: tcp-80
    port: 80
    protocol: TCP
---
apiVersion: v1
kind: Service
metadata:
  name: svc-out-sdn
  namespace: ns
spec:
  clusterIP: None
  ports:
  - name: tcp-80
    port: 80

0 + 6

Nasir

12/17/22, 2:24 AM

If we are explicitly specifying EP then if one pod goes down service will be still returning the IP until we manually update it correct?

Nasir

12/17/22, 2:35 AM

Also when the service is created it will still have clusterIP which is of main interface?

SYN

12/17/22, 5:58 AM

1/ correct. up to client to iterate over IPs returned by DNS resolution, should one of them fail. 2/ it could have, and then your nodes firewall would have redirected that Service IP to the actual backends addresses: but here, `spec.clusterIP=None` ensures that no Service IP would be allocated => internal DNS would return with your endpoint backend addresses instead.

Nasir

12/17/22, 7:37 AM

I think this can not be solution but still this is one possible workaround, why it can not be solution because pods can go up/down and would need application to handle the error when downed ips used.

SYN

12/17/22, 9:34 AM

Would you consider setting up a LoadBalancer in between? Maybe in Kubernetes as well? Some haproxy that does TCP health checks (or whatever, haproxy checks are pretty modular) to your actual endpoints addresses, and make your Service/clients point to that LB?

Nasir

12/20/22, 1:52 AM

LB is what i have now, but issue is it needs manual intervention when new nodes are added. So auto scaling is the problem.

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: Attribute a static public ip for a pod in kubernetes and specify in service

TH: ระบุ IP สาธารณะแบบคงที่สำหรับพ็อดใน kubernetes และระบุในบริการ

RO: Atribuiți un IP public static pentru un pod în kubernetes și specificați în service

RU: Атрибут статический публичный ip для пода в kubernetes и указываете в сервисе

VI: Thuộc tính một ip công khai tĩnh cho một nhóm trong kubernetes và chỉ định trong dịch vụ

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.