Support upstream directives such as backup in VirtualServerRoute CRD #626
Comments
|
Hi @jrmercier1 Thanks for the feature request! To make sure we understand the use case correctly, please see a couple of questions below: What is the problem you're trying to solve? It seems that you want failover behavior for upstreams: If an upstream becomes unavailable, then the IC should start sending requests to the backup upstream. Is that the case? How would you decide if an upstream fails? All of the endpoints of the corresponding service are unavailable? Does the backup upstream represent a different version of the same service (application) or a special service that responds with error pages or something similar? Have you considered any alternatives? For example, why having the endpoints of the |
|
*What is the problem you're trying to solve? It seems that you want failover behavior for upstreams: If an upstream becomes unavailable, then the IC should start sending requests to the backup upstream. Is that the case? Yes that would be the case. The "backup" is only used if the primary one is down. Similar to how we would use upstream setup below in the traditional NGINX plus. *NGINX PLUS EXAMPLE(simplified) How would you decide if an upstream fails? All of the endpoints of the corresponding service are unavailable? This is actually something I was thinking about after submitting the request. I am looking to have this mimic as close to possible the backup directive we would usually use in regular nginx plus. From what I can tell ingress health checks are handled a bit differently since they appear to piggy back on the k8s checks? This may pose a problem using externalName oriented service since I am not specifying anything in a deployment. In our case we would only want to send traffic to backup if all endpoints associated with the primary service are unavailable or not healthy. Does the backup upstream represent a different version of the same service (application) or a special service that responds with error pages or something similar? This would most likely be a 'externalName'. In this case it would be the same app or error page running on a different K8s cluster or VM. The idea is to circuit break only if the local service deployment is having issues. Have you considered any alternatives? For example, why having the endpoints of the dog-v1 and external-dog-service-failover-v1 in one service is not enough? I believe this is an issue when using external services(externalName). |
|
@jrmercier1 Note that health checks are soon to be added to the IC (#635) and support for externalname services for VirtualServer/VirtualServerRoutes is coming soon as well. We're also currently designing support for error pages (a wrapper around the error_pages directive http://nginx.org/en/docs/http/ngx_http_core_module.html#error_page). Consider the following examples (this is a prototype): apiVersion: k8s.nginx.org/v1alpha1
kind: VirtualServer
metadata:
name: cafe
spec:
host: cafe.example.com
tls:
secret: cafe-secret
upstreams:
- name: tea
service: tea-svc
port: 80
- name: coffee
service: coffee-svc
port: 80
- name: errors
services: errors-svc
port: 80
# enabled per VirtualServer
errorPages:
- codes: # ex. 1 - for responses with 404 and 405 status codes, redirect to https://nginx.org with a code 307
- 404
- 405
redirect:
code: 307
url: https://nginx.org
- codes: # ex. 2 - for responses with 502 status code , send a request to the upstream errors for path "/" with the new response code 200
- 502
upstream: errors
path: /
newCode: 200
- codes: # ex. 3 - for responses with 503 status code , send a request to the upstream errors for path "/errors/$upstream_status.html" ($upstream_status - nginx variable)
- 503
upstream: errors
path: /errors/$upstream_status.html
- codes: # ex. 4 - for responses with 504 status code send a request to the upstream errors with special headers set to the values of NGINX variables
- 504
upstream: errors
path: /
headers:
- name: X-Original-URI
value: $uri
- name: X-Original-Status
value: $upstream_status
routes:
- path: "/tea"
upstream: tea
- path: "/coffee"
upstream: coffeePlease note that errorPages are configured for all upstreams. Perhaps the following example can work for your case?: - codes:
- 502
upstream: errorsIn this case, when no available/heathy endpoint exist in an upstream, NGINX will send a new request to the upstream errors with the same URI, returning a 502 response. |
Is your feature request related to a problem? Please describe.
Feature related to VirtualServer.route (upstream or split block?)
Describe the solution you'd like
Currently you can assign weights using splits in the VirtualServerRoute splits directive. I would also like to be able to use a backup directive within an individual path. This would allow us to circuit break at the subroute level.
Or potentially within upstreams block?
The text was updated successfully, but these errors were encountered: