Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/kubermatic/k8sniff

k8sniff - tcp ingress controller with SNI support
https://github.com/kubermatic/k8sniff

ingress ingress-controller kuberntes sni-support

Last synced: 9 days ago
JSON representation

k8sniff - tcp ingress controller with SNI support

Host: GitHub
URL: https://github.com/kubermatic/k8sniff
Owner: kubermatic
License: mit
Created: 2016-10-09T10:57:05.000Z (about 8 years ago)
Default Branch: master
Last Pushed: 2024-04-18T18:50:41.000Z (7 months ago)
Last Synced: 2024-06-20T06:29:09.734Z (5 months ago)
Topics: ingress, ingress-controller, kuberntes, sni-support
Language: Go
Homepage:
Size: 1.89 MB
Stars: 80
Watchers: 29
Forks: 17
Open Issues: 1
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

README

        

K8SNIff - tcp ingress controller with SNI support

=====

K8SNIff is a small ingress server that will accept incoming TLS connections and parse

TLS Client Hello messages for the SNI Extension. If one is found, we'll go

ahead and forward that connection to a Kubernetes service with a matching Ingress resource.

sniff config

------------

The following config will K8SNIff listen on port `8443` and listen on Ingress resources

```json

{

    "bind": {

        "host": "localhost",

        "port": 8443

    },

    "kubernetes": {}

}

```

The example ingress connect any requests to `foo` to service `foo` with port `443` and any requests to `bar` to service `bar` with port `443`. If nothing matches this, it will send the traffic to the default backend with the service `bar` on port `443`.

```yaml

apiVersion: extensions/v1beta1

kind: Ingress

metadata:

  name: tcp

  annotations:

    kubernetes.io/ingress.class: k8sniff

spec:

  backend:

    serviceName: bar

    servicePort: 443

  rules:

  - host: foo

    http:

      paths:

      - backend:

          serviceName: foo

          servicePort: 443

  - host: bar

    http:

      paths:

      - backend:

          serviceName: bar

          servicePort: 443

```

The requested domain name are interpreted as regular expressions. Each server and name will be checked in the order they appear in the file, stopping with the first match. If there is no match, then the request is sent to the first server with default `backend` set.

using the parser

----------------

```

import (

    "fmt"

    " kubermatic/k8sniff/parser"

)

func main() {

    listener, err := net.Listen("tcp", "localhost:2222")

    if err != nil {

        return err

    }

}

```