Question

我在同一GKE群集上部署nifi和gloo API网关。作为LoadBalancer公开的外部IP可以正常工作（在Web浏览器或telnet上打开）。但是，当我使用telnet在GKE cloud shell上连接gloo API网关时，我的连接被拒绝了。

根据相关原因和解决方案，我通过创建防火墙规则允许流量流入群集：

gcloud compute firewall-rules create my-rule --allow=all

我该怎么办？

kubectl get -n gloo系统服务/ gateway-proxy-v2 -o yaml

apiVersion: v1
kind: Service
metadata:
  annotations:
    kubectl.kubernetes.io/last-applied-configuration: |
      {"apiVersion":"v1","kind":"Service","metadata":{"annotations":{},"labels":{"app":"gloo","gateway-proxy-id":"gateway-proxy-v2","gloo":"gateway-proxy"},"name":"gateway-proxy-v2","namespace":"gloo-system"},"spec":{"ports":[{"name":"http","port":80,"protocol":"TCP","targetPort":8080},{"name":"https","port":443,"protocol":"TCP","targetPort":8443}],"selector":{"gateway-proxy":"live","gateway-proxy-id":"gateway-proxy-v2"},"type":"LoadBalancer"}}
  labels:
    app: gloo
    gateway-proxy-id: gateway-proxy-v2
    gloo: gateway-proxy
  name: gateway-proxy-v2
  namespace: gloo-system
spec:
  clusterIP: 10.122.10.215
  externalTrafficPolicy: Cluster
  ports:
  - name: http
    nodePort: 30189
    port: 80
    protocol: TCP
    targetPort: 8080
  - name: https
    nodePort: 30741
    port: 443
    protocol: TCP
    targetPort: 8443
  selector:
    gateway-proxy: live
    gateway-proxy-id: gateway-proxy-v2
  sessionAffinity: None
  type: LoadBalancer
status:
  loadBalancer:
    ingress:
    - ip: 34.xx.xx.xx

kubectl get svc -n gloo-system

NAME               TYPE           CLUSTER-IP      EXTERNAL-IP   PORT(S)                      AGE
gateway-proxy-v2   LoadBalancer   10.122.10.215   34.xx.xx.xx   80:30189/TCP,443:30741/TCP   63m
gloo               ClusterIP      10.122.5.253    <none>        9977/TCP                     63m

Answer 1

您可以尝试使用Gloo版本1.3.6。

请查看https://docs.solo.io/gloo/latest/upgrading/1.0.0/，以跟踪任何可能的重大更改。

GKE上的Gloo gateway-proxy外部IP：telnet：无法连接到远程主机：连接被拒绝

1 个答案: