►
From YouTube: [SIG-Network] Ingress NGINX meeting for 20230216
Description
[SIG-Network] Ingress NGINX meeting for 20230216
A
Hello,
everyone
today
is
February
16
2023,
and
this
is
our
cncf
Sid
networking
subproject
meeting
for
Ingress
nginx,
which
means
it
is
a
cncf
project
and
it
adhes
to
the
cncf
code
of
conduct.
If
you
have
any
issues
or
if
there
are
any
problems,
please
report
those
to
myself
or
Ricardo
and
if
need
be,
report,
those
to
the
same
network
leads,
and
with
that
do
we
have
any
new
folks.
A
It
looks
like
it's
just
the
four
of
us
hanging
out
so
I,
don't
think,
there's
anyone
on
the
phone,
so
we
can
just
roll
right
into
review
on
some
of
the
at
times,
I
restructured
the
agenda
a
little
bit,
I
didn't
like
how
it
was
so
I
just
set
it
up
so
that
the
agenda's
here
so
I
want
to
make
sure
I,
don't
think
we
were.
It
was
on
the
docket
make
sure
we
review
previous
week's
action
items.
Mostly.
A
It's
the
keep
myself
in
check
because
a
lot
of
the
action
items
I
assigned
myself
so
making
sure
that
we're
reviewing
the
action
items
and
then
the
issue
triage
I,
also
added
the
board
back
in
there,
because
the
issue
triage
link
goes
to
the
issues
board.
It
goes
to
the
issues.
This
actually
goes
to
the
project,
board,
open
topics
and
then
any
new
action
items
making
sure
that
we've
got
those
collected
and
added
so
yeah.
A
So
with
that,
we
had
some
issues
with
our
last
couple
of
releases:
I,
don't
think,
there's
any
real
action
items
to
do
on
there,
except
make
sure
that
our
end
to
end
does
what
we
think
it
does.
But
we
do
need
to
pick
up
the
path
type,
so
I'm
going
to
add
the
path
type
stuff.
There
just
have
a
conversation
with
Ricardo
and
myself
and
figure
out
like
what
was
the
actual
issue
and
make
sure
it's
not
non-breaking.
So
I'm
going
to
put
that
on
there
just
to
schedule
some
time.
A
A
So
we'll
schedule
some
time
we'll
drop
in
the
channel.
If
folks
want
to
hang
out
and
discuss
it
with
us
and
just
review
the
code
that
was
there.
So
we
can
try
to
make
sure
it's
a
non-breaking
change
and
get
that
back
in
there
were
there
any
other.
So
I
have
the
otel
one
here
and
I
I'm,
not
a
hundred
and
Sean
I'm
glad.
A
Where
we're
at
with
that,
if
it
is
actually
all
fully
implemented,
so
maybe
we
can
discuss
that
when
we
get
to
the
open
topics,
because
I
obviously
did
not
create
a
ticket
to
remove
the
other
room
of
Zipkin
and
Jaeger.
So
that
was
that
and
I
just
want
to
go
back
one
more
because
I'm
sure
there's
other
stuff
in
here:
egress
regex
for
that
stuff.
So
that
one
was
the
issue.
A
A
C
A
There's
one
in
there
like
dropping
Ingress
class
from
the
the
cluster,
not
from
the
cluster
role
from
the
from
the
role
which
yeah
it's
not
needed.
It's
in
the
cluster
rule.
So
little
things
like
that
agreed.
We
need
to
get
the
small
ones
we
need
to
get
through
faster,
just
because
yeah
and
hopefully
be
able
to
tackle
the
bigger
one.
So
I
agree
all
right
cool.
A
Well,
let's
jump
into
the
fun.
Do
the
issue
triage.
So,
as
I
talked
about
last
time,
we
discussed
it.
I
know
this
is
probably
kind
of
small
for
other
folks,
but
I'll
click
through
them,
as
we
do
as
new
issues
get
added.
They
get
added
to
the
project
board
with
no
status
and
then
I
don't
know
who
has
privileges
to
add
things
to
the
board.
A
A
I'm
gonna
drop
it
into
do
because
I've
already
assigned
myself
to
it
and
I
haven't
looked
at
a
lot,
a
lot
of
the
AWS
there's
like
four
or
five
AWS
issues
out
there
with
like
albs
and
LBS
and
I,
don't
know
if
they're
grouped
together
or
if
they
need
to
be
but
anyway.
So
if
you
need
to
do
that,
click
the
button,
add
it
to
a
project
and
it'll
drop,
it
no
status,
and
then
we
can
review
it
during
the
triaging.
So.
D
A
A
A
D
A
D
D
C
A
A
A
A
A
A
A
A
E
A
D
A
E
Yeah
I
mean
I
I
have
my
that's
one.
One
area
I
I
do
know
quite
a
bit
about
because
I
wrote
the
helm
chart
for
ranchers
deployment
of
our
stuff.
So
I
can
take
a
look
at
this
and
see
see
what
what
the
deal
is.
Gotcha.
What's
your
name,
it
should
be
just
Dylan,
Dylan
Turnbull,
all
one
word,
I,
don't
know
if
capitals
matter,
but
it's
capital,
D
capital,
T,.
E
A
A
D
B
C
Yeah,
if
you
create
a
service
without
selectors,
then
you
can
create.
Then
you
can
create
an
end
point
with
the
same
name
of
the
service.
This
endpoint
is
not
going
to
be
managed.
Then
you
can
ciao
Ingress
to
point
that
theme.
So
another
question
yeah
it
is.
It
is
actually
a
bad
thing
to
support,
because
someone.
C
Yeah,
so
so
that's
that
that's
that's
the
point
long.
So
we
shouldn't,
but
even
today,
with
with
service
I
guess
we
do
support
right,
because
when
you,
when
you
create
so
we
manage
our
back
our
back
ends
based
on
the
end
points
are
not
on
the
service.
You
can
create
a
service
without
a
selector
and
then
create
an
endpoint
in
that
same
name
and
tell
Ingress,
hey,
use
this
thing
and
it's
going
to
use
right
so
yeah,
it's
actually
bad,
because
you
can
use
Ingress
to
bypass
some
rules.
B
Yeah,
that
is
why
I'm
asking
and
more
specifically,
the
very
clear
requirement
two
two
people
are
chiming
in
on
this.
Is
that
the
part
to
which?
Finally,
the
service
points
is
not
in
the
same
namespace
it's
either
in
a
different
namespace
from
where
the
Ingress
object
is,
and
one
person
actually
creating
a
destination
IP
address
outside
the
cluster
completely
outside
the
cluster.
Now
then,
yeah.
C
C
C
C
B
He
created
endpoint,
slides
manually
and
it's
a
headless
service
and
the
IP
address
the
destination
part
is
not
in
namespace,
and
one
more
user
is
joining
in
there
and
saying
yeah.
I
also
did
the
same
thing
and
he's
getting
there
about
getting
a
crash
and
panic,
and
then
the
other
second
is
actually
Point
wanting
to
reach
a
destination
that
is
not
even
in
the
same
cluster.
So
if
we
update
this.
C
Yeah
yeah
yeah,
so
so
long.
This
is
this
is
the
case
and
we
need
to
so
previously
the
way
that
people
did.
That
was
creating
a
service
with
the
external
me
remember,
and
then
we
we
supported
external
name,
and
then
someone
figured
out
that
external
name
could
be
used
to
bypass
some
things
like
going
to
localhost
or
going
to
somewhere
else
and
bypass.
C
C
A
D
A
The
same,
it's
the
same
spot
in
the
code,
so
there
this
person's
pointing
out
that
it
is
a
bug
and
we
panic
when
it's
not
there.
This
person
is
trying
to
use
that
functionality,
so
we
both
need
to
one
not
allow
it
and
we
shouldn't
Panic.
We
should
just
return
an
error
and
saying
there's
no
endpoint
slices
on
this
one
because
we're
looking
at
it
from
a
selector's
perspective.
So
both
of
these
people
are
right,
they're,
just
using
it
for
different
means.
E
A
C
Mean
hold
on
James,
so
this
this
one.
So
this
one
it's
like
this
one
is
it's
kind
of
okay,
specifically
this
one,
because
we
are
checking
a
pointer
this
this
PR,
we
are
checking
a
pointer
that
may
not
exist
right.
So
that's
that's
that
those
teams
that
we
should
always
be
like
hey
is
this
not
new,
and
if
this
is
not
new,
is
this
ready?
So
this
this
PR?
It's
fine
but
I!
C
C
C
A
C
A
A
C
B
No
I,
just
it's
a
it's
very
simple
problem
description,
I,
think
easy
to
understand,
but
I
don't
know
which
way
you
want
to
go,
because
if
we,
if
we
give
Deb
you
random,
then
there's
no
point
in
having
sex
with
image
but
for
some
reason
he
wants
to
access
preview.
Random,
slash
Dev
should
not
be
accessible
at
all.
If
you're
doing,
if
you
are
serious
rooting
at
all
right.
C
C
I
need
to
think
on
that,
because
I
I,
honestly
I'm
not
sure
how
much
we
are
going
to
keep
the
CH
root
or
if
we
are
gonna
just
as
soon
as
you
do.
The
split
control
plane
data
plane
if
this
is
not
going
to
be
required
anymore
right.
So
it's
like
if
this
is
something
that
is
just
for
one
user
and
it
doesn't
generate
a
huge
impact.
I
would
just
keep
this
way.
Otherwise
we
need
to
fix
it,
but
so
to
be
really
honest.
B
But
the
the
split
cpdp
split
was
not
in
too
much
in
context,
then,
but
now
we
are
closer
to
that.
Cptv
split
implementation,
so
if
it
could
go
away
the
whole
con,
the
core
concept
itself
of
CH
root
is
going
to
go
away.
Then
this
is
mood.
I
mean
this.
There's
no
need
to
discuss
about
this
at
all.
Yeah.
A
B
A
This
is
one
of
those
ones
where
it's
again,
if,
if
they
need
to
support
chorus,
we
we
can't
support
all
of
them
across
I
mean
we've
got
all
the
ones
that
we're
testing
and
supporting.
Now
this
is
a
question
of
a
community
need.
Is
there
more
people?
Are
there
more
people
using
chorus
fedora
and
if
there
are
then
yeah
sure
we
need
to
fix
this,
but
right
now
it's
only
two
folks
and
we
need
to
prioritize
the
other
things
that
are
in
our
two
and
that's
unfortunate.
A
But
that's
how
that's
where
we're
at
right
now,
yeah
but
I
mean
it
looks
like
Ishmael
is
looking
at
it
and
if
he
can
get
it
working,
that's
great.
So
he's
already
got
someone
assigned
to
it
another
question
of:
if
we
should
do
it,
that's
a
different
one.
Technically,
if
someone
can
solve
the
problem,
that's
great,
but
should
we
allow
them
access
to?
It
is
a
different
one.
So
I
think
we
wait
and
let
let
Ishmael
figure
this
one
out,
and
then
we
can
have
that
discussion
but
yeah.
A
C
As
soon
as
you
as
soon
as
your
folks
tell
me
it's
fine
to
merge,
we
can
merge
I
think
that
I
would
just
do
a
final
person
that
maybe
I
would
like
a
sound
to
to
make
like
a
demo
for
everyone
on
this
working
on
this
Branch
just
to
say,
hey.
This
is
how
it's
going
to
work
and
even
Point
people
to
how
this
is
gonna
work
right
and
then
we
can
just
get
rid
of
that.
This
is
my
my
take
on
that.
E
C
I've
seen
that
today,
I
guess
it
was
open
on
September
22
yeah
this
one.
So
this
one
this
one
specifically
is
on
my
list,
so
I
I
will
I
will
take
a
look
into
that.
I!
Think
it's
it's
fine
and
it's
it's
actually
great
to
have
this
measured.
Finally,
I
just
want
to
take
a
final
look
and
see.
Okay.
This
is
fine.
B
D
B
D
A
A
D
A
Okay,
so
we've
got
those
both
on
the
projects.
Do
we
have
any
other
issues
we
wanted
to
discuss
because
I
know
we've
got
we've
got
time
we
can
keep
going
through
the
triage
ones.
I'm
gonna.
Add
the
open
I'm
going
to
add
that
to
an
action
item
of
Ricardo
you're,
going
to
review
the
hotel
PRS
and
it's
on
you're
going
to
do
a
demo.
D
E
B
A
D
A
A
Is
a
self-induced
problem
then,
because
we
can't
hey,
we
we
provide
the
health
checks
and
he's
stopping
the
health
checks
from
being
from
working
because
he's
only
accepting
traffic.
So
he
needs
to
add
something
into
the
server
Snippets
for,
like
the
location
on
slash
Health,
to
accept
any
traffic
from
those
load,
balancers
or
figure
out
how
to
get
the
AKs
load
balancers
to
send
the
right
headers.
A
B
Is
a
configuration
so
I
told
him
to
do
that.
I
told
him
to
find
a
way
to
allow
health
check
probes
as
well,
but
I
mean
I
am
taking
the
time
here.
Is
this
guy
and
I?
Think
two
other
people
said
that
the
probes
changed
from
PCP
to
https,
so
I
asked
if
it
is.
If
we
are
not
sure
that
we
made
a
change
like
that,
then
it
is
not
a
big
deal
to
talk
about
here.
A
B
A
B
A
D
A
Did
the
refactor
with
the
the
values
and
the
helm
Library?
No,
we're
not
gonna
be
able
to
know
if
I
have
to
go
back
a
little
bit
more
in
history.
So
we're
not
going
to
be
able
to
know
right
now.
I
thought
I
would
be
able
to
see
how
this
top
ahead,
but
we're
not
defining
it.
I,
don't
know,
what's
the
what's
the
default,
if
it's
TCP,
if
we
don't
actually
because
we're
not,
we
don't
set
it
here.
D
B
D
C
A
B
A
B
The
next
topic-
I
just
wanted
to
get
one
one
liner
from
both
of
you,
is
I,
think
we
are
piling
up
issues
on
people
asking
questions
on
cars.
I,
don't
know
how
do
you
pronounce
that
c-o-r-s
cross
the
region
request
course:
yeah
cool,
so
I
Tried
reading
and
trying
I
tried
to
understand
enough
about
it,
but
I
think
much
deeper
knowledge
of
HTTP
and
course
is
required
to
earn
things.
I
think
there
are
several
issues
for
a
long
time
for
I.
B
B
A
B
D
B
B
D
A
Yeah,
okay,
if
you
can
find,
if
you
can
find
that
PR
that
you're
talking
about
where
we
did
the
hardening
on
cores
that
probably
helped
too
and
then
I'll
ping
Dylan
offline
and
we'll
try
to
see
if
we
get
someone
that
could
help
us
out
with
that.
Because
again,
I
don't
want
to
pull
Ricardo
off
of
cpdp
I!
Don't
have
any
background
knowledge
on
cores
and
yeah.
D
E
A
C
D
A
C
A
A
A
A
B
A
A
E
D
A
So
we've
got
to
figure
out
the
timing,
because
we've
got
the
three
release:
three
places
where
we
release
information.
We
release
it
in
GitHub
as
an
official
release.
We
release
a
Helm
chart
and
then
we
also
do
the
pr
to
the
kubernetes
registry.
So
our
data
for
our
release
lives
in
three
separate
places
and
timing
is
an
issue.