Amazon Elastic Kubernetes Service HTTP/3 configuration

This guide shows how to setup HTTP/3 support for Amazon Elastic Kubernetes Service (EKS) The instructions provided in this page are a continuation of the HTTP/3 in Emissary-ingress documentation.

Create a network load balancer (NLB)

The virtual private cloud (VPC) for your load balancer needs one public subnet in each availability zone where you have targets.

Create a NodePort service

Now create a NodePort service for Emissary-ingress installation with two entries. Use port: 443 to include support for both TCP and UDP traffic.

Create target groups

Run the following command with the variables for your VPC ID and cluster name:

Register your instances

Next, register your cluster's instance with the the instance IDs and Amazon Resource Names (ARN).

To get your cluster's instance IDs, enter the following command:

To get your ARNs, enter the following command:

Create listeners in AWS.

To get the load balancer's ARN, enter the following command:

Create a TCP listener on port 80 that that forwards to the TargetGroup {TCP_TG_ARN}.

Create a TCP_UDP listener on port 443 that forwards to the TargetGroup {TCP_UDP_TG_ARN}.

Update the security groups

Now you need to update your security groups to receive traffic. This security group covers all node groups attached to the EKS cluster:

Now authorize the cluster security group to allow internet traffic:

Get the DNS name for the load balancers

Enter the following command to get the DNS name for your load balancers and create a CNAME record at your domain provider:

Create Listener resources

Now you need to create the Listener resources for Emissary-ingress. The first Listener in the example below handles traffic for HTTP/1.1 and HTTP/2, while the second Listener handles all HTTP/3 traffic.

Create a Host resource

Create a Host resource for your domain name.

Apply the quote service and a Mapping to test the HTTP/3 configuration.

Finally, apply the quote service to a Emissary-ingress Mapping.

Now verify the connection:

Your domain now shows that it is being served with HTTP/3.

ON THIS PAGE

Create a network load balancer (NLB)
Create a NodePort service
Create target groups
Register your instances
Create listeners in AWS.
Update the security groups
Get the DNS name for the load balancers
Create Listener resources
Create a Host resource
Apply the quote service and a Mapping to test the HTTP/3 configuration.

.css-1e2dcm1{z-index:1500;pointer-events:none;}.css-okvapm{z-index:1500;pointer-events:none;}Amazon Elastic Kubernetes Service HTTP/3 configuration

.css-1e2dcm1{z-index:1500;pointer-events:none;}.css-okvapm{z-index:1500;pointer-events:none;}Create a network load balancer (NLB)

.css-1e2dcm1{z-index:1500;pointer-events:none;}.css-okvapm{z-index:1500;pointer-events:none;}Create a NodePort service

.css-1e2dcm1{z-index:1500;pointer-events:none;}.css-okvapm{z-index:1500;pointer-events:none;}Create target groups

.css-1e2dcm1{z-index:1500;pointer-events:none;}.css-okvapm{z-index:1500;pointer-events:none;}Register your instances

.css-1e2dcm1{z-index:1500;pointer-events:none;}.css-okvapm{z-index:1500;pointer-events:none;}Create listeners in AWS.

.css-1e2dcm1{z-index:1500;pointer-events:none;}.css-okvapm{z-index:1500;pointer-events:none;}Update the security groups

.css-1e2dcm1{z-index:1500;pointer-events:none;}.css-okvapm{z-index:1500;pointer-events:none;}Get the DNS name for the load balancers

.css-1e2dcm1{z-index:1500;pointer-events:none;}.css-okvapm{z-index:1500;pointer-events:none;}Create Listener resources

.css-1e2dcm1{z-index:1500;pointer-events:none;}.css-okvapm{z-index:1500;pointer-events:none;}Create a Host resource

.css-1e2dcm1{z-index:1500;pointer-events:none;}.css-okvapm{z-index:1500;pointer-events:none;}Apply the quote service and a Mapping to test the HTTP/3 configuration.