Tasks for Ingress-Nginx

Prerequisites

Install ingress-nginx

Max Connections

Max-Worker-Connections

Request Timeout

Configure request timeout

Session Affinity (Sticky Sessions)

Configure sticky sessions

Header Modification

action	link
set header in request	proxy-set-header
remove header in request	set a empty header in request
set header in response	configuration-snippets with more-set-header directive
remove header in response	hide-headers

URL Rewrite

rewrite

HSTS (HTTP Strict Transport Security)

configure HSTS

Rate Limiting

config rate limiting

WAF

modsecurity

Forward-header control

x-forwarded-prefix-header

HTTPS

Default Certificate

use the following yaml to deploy an ingress-nginx with default certificate

apiVersion: ingress-nginx.alauda.io/v1
kind: IngressNginx
metadata:
  name: demo
spec:
  controller:
    extraArgs:
      default-ssl-certificate: $DEFAULT_CERT_NAMESPACE/$DEFAULT_CERT_NAME

please refer to default-ssl-certificate

Add Pod Annotation in IngressNginx

Add pod annotation

#Tasks for Ingress-Nginx

#TOC

#Prerequisites

#Max Connections

#Request Timeout

#Session Affinity (Sticky Sessions)

#Header Modification

#URL Rewrite

#HSTS (HTTP Strict Transport Security)

#Rate Limiting

#WAF

#Forward-header control

#HTTPS

#TLS re-encrypt and verify backend certificate

#TLS edge termination

#Passthrough

#Default Certificate

#Add Pod Annotation in IngressNginx

Tasks for Ingress-Nginx

TOC

Prerequisites

Max Connections

Request Timeout

Session Affinity (Sticky Sessions)

Header Modification

URL Rewrite

HSTS (HTTP Strict Transport Security)

Rate Limiting

WAF

Forward-header control

HTTPS

TLS re-encrypt and verify backend certificate

TLS edge termination

Passthrough

Default Certificate

Add Pod Annotation in IngressNginx