Release Notes and Announcements
- Release Notes
- Announcements
- Release Notes
Product Introduction
Purchase Guide
- Purchase Instructions
- Purchase a TKE General Cluster
- Purchasing Native Nodes
- Purchasing a Super Node
Getting Started
Cluster Configuration
- General Cluster Overview
- Cluster Management
- Network Management
- Storage Management
- Node Management
- GPU Resource Management
- Remote Terminals
Application Configuration
- Workload Management
- Service and Configuration Management
- Component and Application Management
- Auto Scaling
- Container Login Methods
Observability Configuration
- Ops Observability
- Cost Insights and Optimization
Scheduler Configuration
- Scheduling Component Overview
- Resource Utilization Optimization Scheduling
- Business Priority Assurance Scheduling
- QoS Awareness Scheduling
Security and Stability
- TKE Security Group Settings
- Identity Authentication and Authorization
- Application Security
Multi-cluster Management
- Planned Upgrade
- Backup Center
Cloud Native Service Guide
- Cloud Service for etcd
- TMP
- TKE Serverless Cluster Guide
- TKE Registered Cluster Guide
Use Cases
- Cluster
- Serverless Cluster
- Scheduling
- Security
- Service Deployment
- Network
- Release
- Logs
- Monitoring
- OPS
- Terraform
- DevOps
- Auto Scaling
- Containerization
- Cost Management
- Hybrid Cloud
- AI
Troubleshooting
API Documentation
- History
- Introduction
- API Category
- Making API Requests
- Elastic Cluster APIs
- Resource Reserved Coupon APIs
- Cluster APIs
- Third-party Node APIs
- Relevant APIs for Addon
- Network APIs
- Node APIs
- Node Pool APIs
- TKE Edge Cluster APIs
- Cloud Native Monitoring APIs
- Scaling group APIs
- Super Node APIs
- Other APIs
- Data Types
- Error Codes
- TKE API 2022-05-01
FAQs
- TKE General Cluster
- TKE Serverless Cluster
- About OPS
- Hidden Danger Handling
- About Services
- Image Repositories
- About Remote Terminals
- Event FAQs
- Resource Management
Service Agreement
- TKE Service Level Agreement
- TKE Serverless Service Level Agreement
Contact Us
Glossary

Enabling CLB Direct Connection

Download

포커스 모드

폰트 크기

마지막 업데이트 시간: 2024-08-12 17:48:23

Overview
Traffic from CLB to Nginx Ingress can be directly connected, bypassing NodePort communication. This method offers better performance and allows obtaining the real source IP address.
If you are using a TKE Serverless cluster, or you can ensure that all Nginx Ingress Pods are scheduled on the super node, then this link is already directly connected and requires no additional action.
In other cases, the link will default to NodePort communication. If you wish to enable direct connection, you can refer to the following steps (choose steps applicable to your cluster environment).
Note:
Please refer to Using Services with CLB-to-Pod Direct Access Mode.
Enable direct connection in GlobalRouter+VPC-CNI Network Mode
If the cluster network mode is GlobalRouter and VPC-CNI is enabled:
﻿
﻿
﻿
﻿
It is recommended to declare the use of VPC-CNI network for Nginx Ingress and enable CLB direct connection, values.yaml configuration method:
controller:
  podAnnotations:
    tke.cloud.tencent.com/networks: tke-route-eni # Declare the use of VPC-CNI network
  resources: # Declare the use of ENI in resources
    requests:
      tke.cloud.tencent.com/eni-ip: "1"
    limits:
      tke.cloud.tencent.com/eni-ip: "1"
  service:
    annotations:
      service.cloud.tencent.com/direct-access: "true" # Enable CLB Direct Access
Enable direct connection in GlobalRouter network mode
If the cluster network is GlobalRouter but VPC-CNI is not enabled, it is recommended to enable VPC-CNI for the cluster. For details, see GlobalRouter + VPC-CNI Network Mode Enable Direct Connection to enable CLB direct connection.
If you do not wish to enable VPC-CNI, you can enable direct connection according to the steps below but must accept the use limit.
Note:
Please confirm that your account meets the above conditions and accepts the use limit.
1. Modify the configmap to enable direct connection capability in GlobalRouter cluster dimensions:
kubectl edit configmap tke-service-controller-config -n kube-system
Set GlobalRouteDirectAccess to true:
﻿
﻿
﻿
2. Configure values.yaml to enable CLB direct connection:
controller:
  service:
    annotations:
      service.cloud.tencent.com/direct-access: "true" # Enable CLB Direct Access
Enable direct connection in VPC-CNI Network Mode
If the cluster network is already VPC-CNI, directly configure values.yaml to enable CLB direct connection:
controller:
  service:
    annotations:
      service.cloud.tencent.com/direct-access: "true" # Enable CLB Direct Access
﻿
﻿

도움말 및 지원

문제 해결에 도움이 되었나요?

더 자세한 내용은 문의하기 또는 티겟 제출 을 통해 문의할 수 있습니다.

피드백

tencent cloud

Tencent Kubernetes Engine

Enabling CLB Direct Connection

Overview

Enable direct connection in GlobalRouter+VPC-CNI Network Mode

Enable direct connection in GlobalRouter network mode

Enable direct connection in VPC-CNI Network Mode

도움말 및 지원