Use a Custom Service for External Access
By default, the Helm chart deploys a NodePort Service to provide external access to the Redpanda cluster. To use a custom Service, set external.type to null. Then, you can create your own Services to provide external access or leave the deployment without external access.
-
Helm + Operator
-
Helm
redpanda-cluster.yamlapiVersion: cluster.redpanda.com/v1alpha1
kind: Redpanda
metadata:
name: redpanda
spec:
chartRef: {}
clusterSpec:
external:
enabled: true
type: null
addresses:
- <subdomain-or-ip-address-for-replica-0>
- <subdomain-or-ip-address-for-replica-1>
- <subdomain-or-ip-address-for-replica-2>kubectl apply -f redpanda-cluster.yaml --namespace <namespace>-
--values
-
--set
disable-external-service.yamlexternal:
enabled: true
type: null
addresses:
- <subdomain-or-ip-address-for-replica-0>
- <subdomain-or-ip-address-for-replica-1>
- <subdomain-or-ip-address-for-replica-2>helm upgrade --install redpanda redpanda/redpanda --namespace <namespace> --create-namespace \
--values disable-external-service.yaml --reuse-valueshelm upgrade --install redpanda redpanda/redpanda --namespace <namespace> --create-namespace \
--set external.enabled=true
--set external.type=null
--set "external.addresses={<subdomain-or-ip-address-for-replica-0>,<subdomain-or-ip-address-for-replica-1>,<subdomain-or-ip-address-for-replica-2>}"Make sure to configure external.addresses with addresses that point to the worker node on which each Redpanda broker is running. The addresses must be listed in order of the StatefulSet replicas. For example, the first address in the list is assigned to the first replica (redpanda-0 by default).
If you use a custom domain (external.domain), provide subdomains for each replica in external.addresses. This custom domain is appended to each subdomain (<subdomain-for-replica-0>.<custom-domain>).
Next steps
-
Configure security for your listeners.