undefined | Better HN

0 pointsgeggam8y ago0 comments

This is an interesting article about k8s

https://medium.com/google-cloud/kubernetes-from-load-balance...

0 comments

That's inbound traffic coming from the outside world. You need NAT because the load balancer only knows about nodes, not individual pods (perhaps you can pull it off with e.g. ELBv2, but definitely not with v1).

There's more iptables magic if you talk to a service's virtual cluster IP, because of the load balancing, but from pod to pod, which is what I thought you were referring to, NAT is usually not involved.

geggamOP8y ago

No point in having a service you cant use :)

puzzle8y ago

Are you referring to the service cluster IPs? Those are great for short lived or low volume connections. If you want to balance load over long lived connections or have high volume, you really want to know the addresses of all your backends, whether that's done in your code or in a sidecar like Istio's.

j / k navigate · click thread line to collapse

0 comments

puzzle8y ago

geggamOP8y ago

No point in having a service you cant use :)

puzzle8y ago

j / k navigate · click thread line to collapse