Kubernetes Networking
Last updated
Last updated
While you're inside a container, you cannot access it by curling its container IP like Docker Compose. Since you are inside the container, you should be using the hostname localhost. To see which port to use, enter this command while inside the container: ss -ln.
containerPortPod object: Informational purposes only (no effect on actual deployment) Service object: Port on which app can be reached out inside the container.
Service object exposes internal pod endpoints as service to outer world
port in Service objectService will be exposed INTERNALLY to cluster aplications on this port
nodePortService will be exposed EXTERNALLY to cluster on this port
If you want to access the pod from the external world: host-ip:nodePort
What happens when we hit host-ip:nodePort? 1. Sends traffic received on nodePort and forwards that to port which is also defined in the Service object. 2. Traffic now gets redirected from port to targetPort which is also defined in the Service object. targetPort used to define port on which container has exposed application.
Note: targetPort and containerPort must be identical most of the time - port that is open in container would be the same port you want to send traffic from service via targetPort
Performed by the kubelet, so you are within the node - nodeIPs are irrelevant here (check image in Kubernetes networking for clear picture)
