e9d5aa0f07
This proxy should only be listening for local connections, not 0.0.0.0. Fixes #868
26 lines
654 B
Django/Jinja
26 lines
654 B
Django/Jinja
error_log stderr notice;
|
|
|
|
worker_processes auto;
|
|
events {
|
|
multi_accept on;
|
|
use epoll;
|
|
worker_connections 1024;
|
|
}
|
|
|
|
stream {
|
|
upstream kube_apiserver {
|
|
least_conn;
|
|
{% for host in groups['kube-master'] -%}
|
|
server {{ hostvars[host]['access_ip'] | default(hostvars[host]['ip'] | default(hostvars[host]['ansible_default_ipv4']['address'])) }}:{{ kube_apiserver_port }};
|
|
{% endfor %}
|
|
}
|
|
|
|
server {
|
|
listen 127.0.0.1:{{ kube_apiserver_port }};
|
|
proxy_pass kube_apiserver;
|
|
proxy_timeout 10m;
|
|
proxy_connect_timeout 1s;
|
|
|
|
}
|
|
|
|
}
|