Ingress-nginx: [error] 291#291: *21768 broken header: "��d�G�pl�Ŕ����
Is this a request for help? (If yes, you should use our troubleshooting guide and community support channels, see https://kubernetes.io/docs/tasks/debug-application-cluster/troubleshooting/.): both?
What keywords did you search in NGINX Ingress controller issues before filing this one? (If you have found any duplicates, you should instead reply there.):
aws nginx-ingress controller broken header
Is this a BUG REPORT or FEATURE REQUEST? (choose one):
NGINX Ingress controller version: tag:
0.21.0
Kubernetes version (use kubectl version):
Client Version: version.Info{Major:"1", Minor:"13", GitVersion:"v1.13.0", GitCommit:"ddf47ac13c1a9483ea035a79cd7c10005ff21a6d", GitTreeState:"clean", BuildDate:"2018-12-04T07:48:45Z", GoVersion:"go1.11.2", Compiler:"gc", Platform:"darwin/amd64"}
Server Version: version.Info{Major:"1", Minor:"10+", GitVersion:"v1.10.11-eks", GitCommit:"6bf27214b7e3e1e47dce27dcbd73ee1b27adadd0", GitTreeState:"clean", BuildDate:"2018-12-04T13:33:10Z", GoVersion:"go1.9.3", Compiler:"gc", Platform:"linux/amd64"}
Environment:
- Cloud provider or hardware configuration:AWS(EKS)
- OS (e.g. from /etc/os-release): default ec2
- Kernel (e.g.
uname -a): - Install tools: eks/kubectl
- Others:
What happened:
fetched stable helm chart.
added controller.extraArgs.default-ssl-certificate:"default/tls-secret" (in cluster secrets)
added values to controller.config
deployed
ingress controller pods/svcs came up.
get "site cannot be reached"
checked ingress controller logs- get
����tatooine.ron" while reading PROXY protocol, client: 192.168.196.206, server: 0.0.0.0:443
2018/12/12 17:23:34 [error] 291#291: *21767 broken header: "�V�^����I�;��&A�D��I��,�}":g$ P�m��T�'bN�%���
�i診�9(_<�"���+�/�,�0̨̩����/" while reading PROXY protocol, client: 192.168.217.231, server: 0.0.0.0:443
2018/12/12 17:23:34 [error] 291#291: *21768 broken header: "��d�G�pl�Ŕ����e� ���,���7Y�ޟzz�+�/�,�0̨̩����/5
����tatooine.ron" while reading PROXY protocol, client: 192.168.218.151, server: 0.0.0.0:443
What you expected to happen:
works
How to reproduce it (as minimally and precisely as possible):
Anything else we need to know:
pkelleratwork
All 4 comments
@pkelleratwork you enabled proxy protocol in the ingress controller but not in the ingress-nginx service
aledbf
on 12 Dec 2018
@aledbf under which? I have it in the values.yaml controller.config I've looked for the service entry at https://github.com/helm/charts/tree/master/stable/nginx-ingress but cannot find it.
pkelleratwork
on 12 Dec 2018
@pkelleratwork something line
helm install --name nginx-ingress stable/nginx-ingress \
--set rbac.create=true \
--set controller.service.type=LoadBalancer \
--set controller.service.externalTrafficPolicy=Local \
--set controller.service.annotations."service\.beta\.kubernetes\.io/aws-load-balancer-proxy-protocol"="*" \
--set controller.config.use-proxy-protocol="true"
Thanks @aledbf - controller.service.annotations. was the magic i needed
pkelleratwork
on 12 Dec 2018
Related issues
oilbeater
·
3Comments
c-mccutcheon
·
3Comments
juliohm1978
·
3Comments
sophaskins
·
3Comments
briananstett
·
3Comments
Most helpful comment
@pkelleratwork something line