Skip to content

Instantly share code, notes, and snippets.

@suside

suside/HAProxy_and_K8s.md

Created April 20, 2017 12:08
Show Gist options
  • Save suside/d80403137550f9a8f2948071edefa059 to your computer and use it in GitHub Desktop.
Save suside/d80403137550f9a8f2948071edefa059 to your computer and use it in GitHub Desktop.
Download ZIP
Kubernetes + HAProxy sticky session affinity
Raw
HAProxy_and_K8s.md

Kubernetes + HAProxy sticky session affinity

  1. Make sure you have balance source in haproxy.
  2. Backend server section in haproxy config should have all your k8s nodes.
  3. sessionAffinity in k8s is irrelevant.
  4. Exposed k8s service need to have nodePort set and this annotation:

kubectl annotate service myService service.beta.kubernetes.io/external-traffic=OnlyLocal

This will cause internal k8s loadbalancer on nodeⁿ to route traffic only to pod on nodeⁿ. From Haproxy point of view it will look like nodeⁿ:nodePort === pod on nodeⁿ:port thus disabling k8s LB completly.

Further reading: https://kubernetes.io/docs/tutorials/services/source-ip/#source-ip-for-services-with-typenodeport

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment