here is my helm chart for kibana with ssl and tls enabled.I have access to port 5601 with assined cluter ip (i have telnet throw port 5601)but not access throw loadbalancer(with assigned ip) but other apps working properly with assigned ip address.
automountToken: true
elasticsearchHosts: https://elasticsearch-master:9200
elasticsearchCertificateSecret: elastic-ca-crt
elasticsearchCertificateAuthoritiesFile: ca.crt
elasticsearchCredentialSecret: elasticsearch-master-credentials
healthCheckPath: /app/kibana
hostAliases: []
image: docker.elastic.co/kibana/kibana
imagePullPolicy: IfNotPresent
imagePullSecrets: []
imageTag: 8.5.1
nameOverride: ""
podSecurityContext:
fsGroup: 1000
priorityClassName: ""
readinessProbe:
failureThreshold: 3
initialDelaySeconds: 10
periodSeconds: 10
successThreshold: 3
timeoutSeconds: 5
securityContext:
capabilities:
drop:
- ALL
runAsNonRoot: true
runAsUser: 1000
serverHost: 0.0.0.0
replicas: 1
protocol: https
httpPort: 5601
kibanaConfig:
kibana.yml: |
server.ssl.certificate: /usr/share/kibana/data/certs/kibana-crt/kibana.crt
server.ssl.enabled: true
server.ssl.key: /usr/share/kibana/data/certs/kibana-key/kibana.key
elasticsearch.ssl.certificateAuthorities: /usr/share/kibana/data/certs/ca-cert/ca.crt
secretMounts:
- name: elastic-ca-crt
secretName: elastic-ca-crt
path: /usr/share/kibana/data/certs/ca-cert
- name: kibana-node-crt
secretName: kibana-node-crt
path: /usr/share/kibana/data/certs/kibana-crt
- name: kibana-node-key
secretName: kibana-node-key
path: /usr/share/kibana/data/certs/kibana-key
resources:
requests:
cpu: 1000m
memory: 1Gi
limits:
cpu: 1000m
memory: 1Gi
service:
annotations: {}
httpPortName: http
labels: {}
loadBalancerIP: 'ip'
loadBalancerSourceRanges:
- 172.16.***.**/28
nodePort: ''
port: 5601
type: Loadbalancer
what is the problem ? thanks so much.