Categories
Kubernetes

Kubernetes: Install Istio using Helm with Secret Discovery Service (SDS) + Cert-Manager

Install Cert-Manager If you haven’t already, install Cert-Manager. https://itsmetommy.com/2019/06/23/kubernetes-cert-manager-on-gke-using-lets-encrypt/ Install Istio with SDS using Helm Add repo and update https://github.com/istio/istio/releases/ # latest release Add repo. helm repo add istio.io https://storage.googleapis.com/istio-release/releases/1.2.6/charts/ Update. helm repo update Install CRD helm install istio.io/istio-init –name istio-init –namespace istio-system Install Istio https://istio.io/docs/tasks/traffic-management/ingress/secure-ingress-sds/ helm install istio.io/istio –name istio \ –namespace istio-system \ –set […]

Categories
Kubernetes

Kubernetes: Istio + Cert-Manager + GKE

Install Cert-Manager If you haven’t already, install Cert-Manager. https://itsmetommy.com/2019/06/23/kubernetes-cert-manager-on-gke-using-lets-encrypt/ Enable Istio in GKE Verify { kubectl get service -n istio-system kubectl get pods -n istio-system } Enable Istio on namespace kubectl label ns itsmetommy istio-injection=enabled Create Certificate cat <<EOF > itsmetommy-certificate.yaml apiVersion: certmanager.k8s.io/v1alpha1 kind: Certificate metadata: name: itsmetommy-yourdomain-com-tls namespace: istio-system spec: secretName: itsmetommy-yourdomain-com-tls commonName: ‘*.itsmetommy.yourdomain.com’ […]

Categories
docker gcp Kubernetes Linux

Install Minikube on GCP CentosOS 7

Enable nested virtualization on an instance https://cloud.google.com/compute/docs/instances/enable-nested-virtualization-vm-instances Create a boot disk. gcloud compute disks create disk1 –image-project centos-cloud –image-family centos-7 –zone us-central1-a Create image with License. Note: This may take a minute. gcloud compute images create nested-vm-image –source-disk=disk1 –source-disk-zone=us-central1-a –licenses=https://www.googleapis.com/compute/v1/projects/vm-options/global/licenses/enable-vmx Delete source disk, as it is no longer needed. gcloud compute disks delete disk1 –zone […]

Categories
Kubernetes

Kubernetes: Enable Istio on GKE using Terraform

I showed you how to create a GKE cluster with Terraform in a previous post. When I went to enable Istio, it wasn’t as simple as I thought. I ended up having to add an additional google-beta provider, along with having to add this google-beta provider within the google_container_cluster resource. Update gkecluster/provider.tf https://www.terraform.io/docs/providers/google/provider_versions.html You can […]

Categories
General Kubernetes

Kubernetes: NGINX Ingress Controller on GKE

Updated: 2020-06-17 What is an ingress? An Ingress gives you a way to route requests to services based on the request host or path, centralizing a number of services into a single entrypoint. With an Ingress, there is no need to create a bunch of Load Balancers or exposing each service on the Node. You […]