A newer version is available. For the latest information, see the current release documentation.
« Storage recommendations Transport settings »
Elastic Docs Elastic Cloud on Kubernetes [1.1] Orchestrating Elastic Stack applications Run Elasticsearch on ECK

HTTP settings and TLS SANs

edit

HTTP settings and TLS SANs

edit

In the spec.http.service.spec field, you can change the Kubernetes service type used to expose Elasticsearch:

spec:
  http:
    service:
      spec:
        type: LoadBalancer

Check the Kubernetes Publishing Services (ServiceTypes) that are currently available.

When you change the clusterIP setting of the service, ECK will delete and re-create the service, as clusterIP is an immutable field. Depending on your client implementation, this might have a temporary impact on the ability to resolve the service’s DNS name to endpoints.

You can add an IP or a DNS name in the SAN of the self-signed certificate configured by default to secure the HTTP layer with TLS in the spec.http.tls.selfSignedCertificate section.

spec:
  http:
    tls:
      selfSignedCertificate:
        subjectAltNames:
        - ip: 1.2.3.4
        - dns: hulk.example.com
« Storage recommendations Transport settings »