This article covers additional important features introduced in AWS Load Balancer Controller (V2): using Network Load Balancer (NLB) in IP mode to handle north-south HTTP(S) traffic ingress on the EKS cluster created in Part 1, and demonstrating the new Target Group Binding CRD for flexibly binding EKS services to existing Target Groups.

Steps

North-South Traffic Ingress with NLB + IP Mode

In addition to the Layer 7 HTTP traffic ingress via Application Load Balancer covered in Part 1, there are many scenarios requiring Layer 4 TCP traffic ingress. On EKS, this can be achieved using NLB.

Deploy a sample nginx service and expose it via Classic Load Balancer (CLB)

Run the following commands to create a K8S Deployment and Service for nginx. Note that setting type: LoadBalancer exposes the service to the internet via an AWS load balancer (CLB by default):

cat <<EoF > ~/environment/nginx.yaml
---
apiVersion: apps/v1
kind: Deployment
metadata:
  name: nginx
  labels:
    app: nginx
spec:
  replicas: 1
  selector:
    matchLabels:
      app: nginx
  template:
    metadata:
      labels:
        app: nginx
    spec:
      containers:
      - name: nginx
        image: nginx
        ports:
        - containerPort: 80
---
apiVersion: v1
kind: Service
metadata:
  name: "nginx"
spec:
  selector:
    app: nginx
  type: LoadBalancer
  ports:
  - protocol: TCP
    port: 80
    targetPort: 80
EoF
kubectl apply -f ~/environment/nginx.yaml

See also: Deploying K8S Services on AWS EKS (Part 1)

Back to Tech Blog