is a container orchestration and management tool. Kubernetes is declarative, so you define the end state in a .yml file. A Kubernetes cluster has two components, the master, and the workers. The master is the control plane that the user interacts with to manage the containers. Worker nodes are where the containers are deployed and run. A Kubernetes cluster is connected internally through a private network. Cloudflare Tunnel can be used to expose services running inside the Kubernetes cluster to the public.
Creating the Kubernetes Cluster
This guide will use a Google managed Kubernetes GKE. To get started, perform the following steps:
- Install the and .
- In the GCP console create a new Kubernetes cluster.
- In order to connect to the cluster, select the three dots and then connect from the drop down.
- Copy the command that appears and paste it into your local terminal.
Creating the Pods
A pod is the basic deployable object that Kubernetes creates. It represents an instance of a running process in the cluster. The following .yml file ( httpbin-app.yml) will create a pod that contains the httpbin application. It will create two replicas so as to prevent any downtime. The application will be accessible inside the cluster at web-service:80.
Using the following command the application will begin to run inside the cluster.
apiVersion: apps/v1kind: Deploymentmetadata:name: httpbin-deploymentspec:selector:matchLabels:app: httpbinreplicas: 2template:metadata:labels:app: httpbinspec:containers:- name: httpbinimage: kennethreitz/httpbin:latestports:- containerPort: 80---apiVersion: v1kind: Servicemetadata:name: web-servicespec:selector:app: httpbinports:- protocol: TCPport: 80
The pods' status can be seen through the console or using the kubectl get pod command.
$ kubectl create -f httpbin-app.yml
$ kubectl get pods
Routing with Cloudflare Tunnel
The tunnel can be created through the dashboard using . Instead of running the command to install a connector you will select docker as the environment and copy just the token rather than the whole command. Configure the tunnel to route to k8.example.com from the service http://web-service:80. Create the cloudflared-deployment.yml file with the following content.
This file will be deployed with the following command.
apiVersion: apps/v1kind: Deploymentmetadata:labels:app: cloudflaredname: cloudflared-deploymentnamespace: defaultspec:replicas: 2selector:matchLabels:pod: cloudflaredtemplate:metadata:creationTimestamp: nulllabels:pod: cloudflaredspec:containers:- command:- cloudflared- tunnel- runargs:- --token- <token value>image: cloudflare/cloudflared:latestname: cloudflared
The application within the cluster will now be accessible through the domain name as configured.
$ kubectl create -f cloudflared-deployment.yml