Determine if a pod should connect to KeyManager1 or KeyManager2
I am currently trying to create an architecture as shown in the diagram below.
For the first deployment of the pods it's quite simple, as I always have an even number, I put the first half on KeyManager1 and the other half on KeyManager2.
My problem is when a pod needs to be replaced.
I need to be able to determine if the new pod should go on KM1 or KM2.
Ideally, I would like to count the number of connections a KM can have from GW pods. If a KM1 has 3 connections and KM2 has 2 connections, the new GW should connect to KM2.
I really don't see how to do this.
Edit : I was wrong, when a pod is to be deleted, it is deleted before the new one is created.
Can I put something in the preStop to change the deployment file to use for the replacement?
Something like :
if connected to km1
use deployment-1
else deployment-2
I finally found a solution to my problem. It's not very "clean" but that's all I found.
To explain quickly, I created 2 files on a PV. When a pod (GW) is created it will read the files. If the 2 files contain 0 the GW points to KM1 and writes 1 to the file, if there is 1 in the KM1 file and 0 in the KM2 file, the GW points to KM2 and writes 1 to the file. We increment like that alternately. When the pod is deleted I decrement with the preStop.
- How to identify the storage space left in a persistent volume claim?
- Can someone explain 'patchesStrategicMerge'
- How to fix disk-pressure on k8s node?
- Difference between PodDisruptionBudget and minimum replicas in HPA
- Configure Microk8s
- How do I get a certificate (public and private key) into a windows container in AKS?
- "The connection to the server localhost:8080 was refused - did you specify the right host or port?"
- 1 node(s) had taints that the pod didn't tolerate in kubernetes cluster
- --record has been deprecated, then what is the alternative
- Flink Kubernetes S3 state support
- How to count how many pods were started by namespace each day in PromQL?
- couldn't get current server API group list: the server has asked for the client to provide credentials error: You must be logged in to the server
- access postgres in kubernetes from an application outside the cluster
- What will happen to evicted pods in kubernetes?
- Mongo DB deployment not working in kubernetes because processor doesn't have AVX support
- Flux not decrypting using SOPS
- Python Kubernetes Client: equivalent of kubectl api-resources --namespaced=false
- Not possible to use containers in Azure Pipelines self-hosted agents deployed as Azure K8s pods
- My kubernetes pods keep crashing with "CrashLoopBackOff" but I can't find any log
- GKE autoscaling
- how do I enable mount propagation in Rancher - Kubernetes feature gates?
- How to resolve unmet dependencies between containerd and runc?
- Shell (ssh) into Azure AKS (Kubernetes) cluster worker node
- How to enable Calico network policy on the existing AKS cluster
- Azure Kubernetes Service (AKS) uses Application Gateway Ingress Controller (AGIC) : How to implement HSTS header in ASP.Net Core 6.0?
- TLS Termination in K8S Gateway API (azure implementation) Resource?
- Any python client method available to get/set env variables of kubernetes deployment
- In Kubernetes, how can I scale a Deployment to zero when idle
- ClusterIssuer Failed to register ACME account: secret already exists
- kubectl - How to restart a deployment (or all deployment)