All Questions
Tagged with azure-application-gateway azure-aks
102
questions
5
votes
3
answers
2k
views
AKS AGIC Application Gateway Ingress Controller Not Deploying
I created a new cluster, created an application gateway and then installed AGIC per the tutorial. I then configured the ingress controller with the following config:
# This file contains the essential ...
- 305
4
votes
2
answers
20k
views
How to enable CORS on AZURE application gateway
how can I enable CORS on the Azure application gateway ?
I have a signalhub running on
Azure kubernetes service as a
Dapr app.
The app has All .net cors policies setup correctly, issue seems to be ...
4
votes
1
answer
729
views
Client IP is not preserved using Azure Application Gateway and Nginx ingress controller
I have an app which runs on AKS, using nginx ingress and is exposed through Azure Application Gateway.
When I access the app through the gateway, the client IP is replaced with the Application Gateway ...
3
votes
1
answer
930
views
Azure Kubernetes Service (AKS) uses Application Gateway Ingress Controller (AGIC) : How to implement HSTS header in ASP.Net Core 6.0?
An action item from the security scan is to implement HSTS header in ASP.Net Core 6.0 WebAPI.
A WebAPI application is deployed on AKS using Application Gateway Ingress Controller. SSL termination ...
- 224
3
votes
1
answer
902
views
PFX size limit error on Azure application gateway configuration
I am trying to configure azure application gateway. I provided .pfx file for https listener configuration. But when i tried to create Azure application gateway, I am getting below error
{
&...
- 163
3
votes
1
answer
682
views
Connect Azure Application Gateway with Internal AKS managed loadbalancer
I am trying to implement AKS Baselines with terraform, but I can't get my Application Gateway connect to the internal load balancer created by AKS.
My AKS config contains of a solr instance and a ...
- 91
3
votes
1
answer
2k
views
Azure Application Gateway Ingress Controller - The number of BackendHttpSettings exceeds the maximum allowed value 100
We are using Azure Application Gateway as the ingress controller to our AKS cluster and we have been hitting this issue occasionally.
"The number of BackendHttpSettings exceeds the maximum ...
- 313
3
votes
1
answer
678
views
How does Application Gateway prevent requests being sent to recently terminated pods?
I'm currently researching and experimenting with Kubernetes in Azure. I'm playing with AKS and the Application Gateway ingress. As I understand it, when a pod is added to a service, the endpoints are ...
- 557
3
votes
0
answers
285
views
502 Bad Gateway error when using NestJS app with AKS and AGIC
I'm trying to deploy a backend application made with nestjs to AKS and have it exposed to the internet using Application Gateway Ingress Controller, the deployment of the application works with all ...
- 71
3
votes
1
answer
773
views
How to avoid updating backend pool of application gateway by terraform script
I am trying to deploy AKS with application gateway ingress controller via terraform.
For which I have created application gateway , AKS (also enabled ingress controller setting) and then deployed YAML ...
- 31
3
votes
0
answers
422
views
Application Gateway: ResourceNotFound during AKS provisioning (bicep)
When we deploy our environment with e.g. AKS and Application Gateway through bicep, we get sometimes this error during AKS provisioning:
{
"status": "Failed",
"error&...
- 405
2
votes
1
answer
265
views
Role of Kubernetes Services while using AKS Application Gateway Ingress Controller
I am a little confused while reading an article on AKS Application Gateway Ingress Controller. With this addon, we can leverage native azure application gateway layer 7 capability and that is a good ...
- 605
2
votes
1
answer
861
views
Terraform state sync with external changes
I have terraform managing my infrastructure in Azure. However, there are cases where the state can get out of sync when other services are changing the infrastructure as well.
For example, I have ...
2
votes
1
answer
666
views
Enable the Application Gateway Ingress Controller (AGIC) add-on for an AKS cluster using custom subnet
I follow this tutorial https://learn.microsoft.com/en-us/azure/application-gateway/tutorial-ingress-controller-add-on-new to install AGIC for AKS cluster.
As the docs, the default vnet is 10.0.0.0/8 ...
- 537
2
votes
1
answer
517
views
Change grafana.ini in IstioControlPlane using istioctl
I am running grafana (kiali, prometheus and tracing too) inside an Azure Kubernetes Cluster (AKS). The AKS cluster is behind an Application Gateway Ingress Controller (AGIC) the grafana pod is running ...
- 57
2
votes
0
answers
256
views
How Istio and AKS handle egress traffic to the Application Gateway in Azure, in a Hub and Spoke network
This Azure setup uses Application Gateway with AKS and Istio acting as ingress controller.
There is also a Hub and Spoke where the Application Gateway is in one of the Spokes.
The request enters via ...
- 374
2
votes
1
answer
722
views
AAD authentification in AKS
I am using Microsoft.AspNetCore.Authentication.AzureAD.UI package.
And simple authentication in Startup.cs:
services.AddAuthentication(AzureADDefaults.AuthenticationScheme)
.AddAzureAD(options =&...
- 2,677
1
vote
2
answers
1k
views
AKS create with App gateway ingress control fails with IngressAppGwAddonConfigInvalidSubnetCIDRNotContainedWithinVirtualNetwork error
When i try to create aks using azure cli using the following command :
"az aks create -n myCluster -g myResourceGroup --network-plugin azure --enable-managed-identity -a ingress-appgw --appgw-...
- 13
1
vote
2
answers
3k
views
Ingress rewrite rule in aks agic gives 502
I'm trying to create HTTPS ingress for my node.js authentication (auth) REST service in AKS, but I'm getting a 502 Bad Gateway response.
Here's my deployment and service definitions:
---
apiVersion: ...
- 15.7k
1
vote
1
answer
2k
views
AKS with AGIC and Application Gateway
I have an AKS cluster with the add-on AGIC enabled (will try and convert it into Helm based AGIC in the near future). At the moment I have an application on this cluster with the Ingress set to the ...
- 415
1
vote
1
answer
3k
views
Enable App Gateway ingress for Azure Kubernetes on 443 (https)
I am new to AKS and trying to set up the cluster and expose it via an app gateway ingress controller. While I was able to set up the cluster using az commands and was able to deploy and hit it using ...
1
vote
2
answers
820
views
Azure application gateway with AKS Kube-Proxy
I have a AKS Cluster and some microservice with Nodeport available in it.
User -> Application Gateway -> Backend Pool -> Nodeport of microservice -> service
However, i have idea to use ...
- 149
1
vote
1
answer
1k
views
Azure App gateway ingress controller with private AKS cluster not working
I am new to kubernetes, so please bear with me. I have created a azure kubernetes private cluster, i have deployed the pods for a basic webapplication & CLusterIP service , I have enabled App ...
- 13
1
vote
1
answer
239
views
AKS with LetsEncrypt and multiple certs for different containers
I'm looking for any working samples of applying different certificates on AKS with Application Gateway as Ingress Controller.
I have Key Vault with a certificate that is used imported in ApGw/Ingress ...
- 476
1
vote
1
answer
1k
views
Azure Kubernetes Service (AKS) - Istio Gateway: How to configure the Application Gateway in front of the Istio Gateway?
I'm attempting to configure AKS, and I've installed Istio Gateway, which interns created an Azure Load Balancer, to make the overall traffic flow to be as shown below.
In my opinion, Azure Load ...
- 224
1
vote
1
answer
605
views
AGIC deletes a working backend when a different pod fails to start
Deployment overview
We are using the Azure Gateway Ingress Controller (AGIC) to automatically create listeners and back-ends on an app gateway for ingresses in our AKS cluster
ArgoCD is deployed to ...
- 2,147
1
vote
1
answer
219
views
In Azure Application Gateway, how to fix a value permanently in the backend settings?
I'm running my frontend and backend pods in AKS Cluster, there is more than 60 seconds time needed to get response from a client, so i face the "Server timed out - 504 error". The default ...
- 21
1
vote
0
answers
268
views
ASP.NET Core 6 Web API + aks + Application Gateway not working together
I've been struggling for two weeks now. So, any help is welcome.
I created an AKS and I tried to host my apps there.
What is done:
All the containers are tested locally and working perfectly.
All CI/...
1
vote
0
answers
355
views
AGIC deployed with helm (shared:true) with customized prohibited targets deletes the manually added https listener, rules, pool etc
We have a cluster with AGIC that was installed by helm. We made sure to set shared: true to helm configs and to delete the default prohibited-target-all and introduce the custom prohibited target to ...
- 21
1
vote
0
answers
459
views
Azure AKS and Application Gateway returning 404
I have a AKS cluster deployed with an Application Gateway. These are all docker images running on the AKS cluster with a simple ingress. They all run on the same default namespace. One is a Vue ...
1
vote
0
answers
274
views
Shiny proxy on AKS behind an Azure Application Gateway
I’ve been using shiny proxy on AKS for the past couple of months and it’s been fantastic, no problems at all, however, the need for a more secure setup has arised, and I have to use it behind an Azure ...
1
vote
1
answer
1k
views
Azure Traffic manager gives SSL error while App gateway URL works while using Azure App gateway ingress controller on AKS
We are going multi-region for our project and there is a need for us to use an Azure traffic manager to route traffic to each region. Our setup looks like below where our app gateway is exposed via a ...
1
vote
0
answers
767
views
How to configure Azure Application Gateway Ingress Controller (AGIC) yaml
I need help in AGIC configuration. I am using Loadbalancer service for my existing AKS cluster and below is the sample yaml file that works and I can access application using LB public IP :
apiVersion:...
1
vote
2
answers
500
views
Can't expose HTTPS in Application Gateway for EKS after following tutorial for using Lets Encrypt
I followed https://learn.microsoft.com/en-us/azure/application-gateway/ingress-controller-letsencrypt-certificate-application-gateway and that all seems to be working, but I don't see how to add a ...
1
vote
0
answers
202
views
Azure Gateway Ingress Controller
I am using the Azure Application Gateway Ingress Controller with AKS, it quite okay to me with url routing, TLS, web application firewall. But it looks like the AGIC doesn't support Authentication (I'...
- 724
1
vote
0
answers
319
views
Why cert-manager overrides manually created certificate?
I'm creating a manual certificate in Kubernetes using akv2k8s(https://akv2k8s.io/). This gets a certificate from Azure Key Vault and creates a certificate in k8s. Below you can find the akv2k8s YAML ...
- 129
1
vote
0
answers
168
views
AGIC with App gateway together with azure load balancer
i want to understand the concept and the traffic flow in case of using AGIC. I'm using azure advanced networking in AKS. What i see that azure automatically creates an Azure load balancer once the ...
- 13
1
vote
1
answer
635
views
Set override backend path to empty string in App G/w Ingress Controller
We are using Azure App G/w Ingress Controller to expose services hosted within AKS.
E.g.
Service named abc is hosted in AKS as below
apiVersion: v1
kind: Service
metadata:
labels:
project: abc
...
- 63
1
vote
2
answers
1k
views
Allow Azure Application Gateway to route all sub paths in AKS
I have AKS configured with Azure Application Gateway as my ingress.
I am trying to deploy a .net core Angular app to a path within the cluster. I would like to access the app on http://<cluster ip&...
- 2,724
1
vote
1
answer
261
views
Working instructions for Azure AKS + Azure Application Gateway?
Does anyone have working instructions for using AKS + Azure Application gateway for ingress? The instructions from Microsoft don't work (Helm issues among others)
This should be a one click in portal ...
- 3,417
1
vote
0
answers
543
views
How to send Azure Application Gateway Request Host headers to istio ingress gateway(Azure Internal LB)
I have configured Azure Application Gateway with WAF2 as Edge Gateway! The requests are sent to backendpool within same Vnet. The backendpool is the IP of Istio Ingress Gateway! The Ingress Gateway is ...
- 1,963
1
vote
0
answers
622
views
Azure Application Gateway returns 502
Our platform has an Azure Application Gateway configured with a number of back services hosted in an AKS cluster using the Azure Application Gateway ingress controller. One of the services is our core ...
- 87
0
votes
2
answers
1k
views
Can SSL offloading be configured when using the Application Gateway Ingress Controller?
I am using the Azure Application Gateway Ingress Controller for Kubernetes. I was able to successfully configure the controller to expose my Kubernetes Services over http. However, I would like the ...
- 2,540
0
votes
2
answers
722
views
AGIC using HELM is overwriting listeners, rules etc to second AKS using a shared APP Gateway
I have two AKS (Dev and QA) that I want to share with one APP Gateway in Azure.
I deployed AGIC using HELM and enabled shared on both clusters.
Using YAML files to deploy the ingress to DEV it works ...
- 21
0
votes
1
answer
1k
views
How to work with SSL when integrating AGIC with AKS using Terraform?
I am trying to integrate AGIC with AKS in the following method, but using Terraform: https://learn.microsoft.com/en-us/azure/application-gateway/tutorial-ingress-controller-add-on-existing
I have ...
- 3,143
0
votes
1
answer
640
views
Azure Application Gateway backend settings is somehow being overwritten. I changed it from 30 to 900 before and now it is back to 30
In order to make my application specific tasks avoid timeout errors, inside AKS cluster, I have changed the backend settings of my azure application gateway "Request time-out (seconds)" from ...
- 181
0
votes
1
answer
1k
views
How to scale Websocket Connections with Azure Application Gateway and AKS
We want to dynamically scale our AKS Cluster based on the number of Websocket connections.
We use Application Gateway V2 along with Application Gateway Ingress Controller on AKS as Ingress.
I ...
- 2,732
0
votes
4
answers
2k
views
Can you have both a HTTP port and a TCP port exposed in AKS using Application Gateway?
Setup:
Azure Kubernetes Service
Azure Application Gateway
We have kubernetes cluster in Azure which uses Application Gateway for managing network trafic. We are using appgw over Load Balancer ...
- 3,471
0
votes
2
answers
114
views
Ingress controller not picking changes to new/existing Ingress resources
Im usings AKS AGIC
Describe the bug
The deployed ingress control does not pick existing or newly created Ingress resources. The Ingress resources are properly annotated. On killing controller pod, the ...
- 11
0
votes
1
answer
179
views
Troubleshooting Rule Priority Configuration in Azure Application Gateway Ingress for Kubernetes
Is there a method to define rule priority within the Azure Application Gateway?
I've defined an ingress object in my Kubernetes cluster as follows:
apiVersion: networking.k8s.io/v1
kind: Ingress
...
- 897