---
apiVersion: networking.k8s.io/v1
kind: Ingress
metadata:
name: slb-s1-https
namespace: default
annotations:
# kubernetes.io/ingress.class: traefik
# 使用https,走websecure,必须要指定router.tls: true
traefik.ingress.kubernetes.io/router.tls: "true"
traefik.ingress.kubernetes.io/router.entrypoints: websecure
spec:
ingressClassName: traefik
rules:
- host: slb-s1-https.huanle.com
http:
paths:
- path: /
pathType: Prefix
backend:
service:
name: slb-s1
port:
name: http
tls:
- hosts:
- slb-s1-https.huanle.com
secretName: huanle-com-tls
---
# TLS 证书, 证书和私钥必须是 base64 编码之后的文本
apiVersion: v1
kind: Secret
metadata:
name: huanle-com-tls
namespace: default
data:
tls.key: ""
tls.crt: ""
[root@maxiaoke yaml]# curl -k https://10.0.160.10/info -H 'Host: slb-s1-https.huanle.com'
2021-10-13T06:49:29+00:00|v1.0.3|nginx-deploy-699fdd685d-ffswz|ok