you need to create service for the zabbix proxy

I have a working zabbix proxy pod and mysql pod working together. My concern is, routing external traffic (several thousand hosts with agents outside of kube) to a single pod. Yes we can create 'another' zabbix proxy and another mysql pod, then we would have some semblance of redundancy, but the challenge is routing 'to' it from monitored devices. Since each agent has a unique relationship/assignment 'to' a specific zabbix proxy, this could be problematic. So far HAProxy looks promising in this area, but each host agent may need to point to the elb name, with a unique port for each proxy, then maybe haproxy can route to that unique pod. Additionally this must be secure, so tls negotiation has to work as well.

I think what you need is some kind of entry point ( LB ) > Ingress that will route traffic to your Service ( zabbix proxy ) which will route traffic and will be tied to zabbix-proxy Pod ( zabbix proxy pod needs to be deployed via deployment and replica set - so in case it will crash new one will be immediately started - reducing the need of another zabbix proxy in the pair ). Thats the design for zabbix proxy 1 ( for first 100 servers ). For zabbix proxy 2 ( second 100 servers ) new Ingress, new Service, new deployment ( replicaset ). Maybe another recommendation would be to use sqlite database on those proxies ( some pod zabbix proxy + sqlite ) - so no need for mysql separate pods ( which should also deployed via deployment-replica set and have their own service ) - the mysql brings just another level of complexity which is not needed - sqlite can handle a huge number of VPS.

Im not sure how 2 replicas/pods ( see picture bellow ) will behave belonging to one service as the service would choose randomly one of them ...guess this would not be the best approach as usually Zabbix HA scenarios are active-passive and in case od pod crash k8s should start one just like it "nearly immidiatelly" - routing is kept by ingress and service.


https://kubernetes.io/docs/concepts/services-networking/ingress/

Hi,


There are several different proxies you may encounter when using Kubernetes:

The kubectl proxy:

• runs on a user's desktop or in a pod
• proxies from a localhost address to the Kubernetes apiserver
• client to proxy uses HTTP
• proxy to apiserver uses HTTPS
• locates apiserver
• adds authentication headers

The apiserver proxy:

• is a bastion built into the apiserver
• connects a user outside of the cluster to cluster IPs which otherwise might not be reachable
• runs in the apiserver processes
• client to proxy uses HTTPS (or http if apiserver so configured)
• proxy to target may use HTTP or HTTPS as chosen by proxy using available information
• can be used to reach a Node, Pod, or Service
• does load balancing when used to reach a Service

The kube proxy:

• runs on each node
• proxies UDP, TCP and SCTP
• does not understand HTTP
• provides load balancing
• is just used to reach services

A Proxy/Load-balancer in front of apiserver(s):

• existence and implementation varies from cluster to cluster (e.g. nginx)
• sits between all clients and one or more apiservers
• acts as load balancer if there are several apiservers.

Cloud Load Balancers on external services:

• are provided by some cloud providers (e.g. AWS ELB, Google Cloud Load Balancer)
• are created automatically when the Kubernetes service has type LoadBalancer
• usually supports UDP/TCP only
• SCTP support is up to the load balancer implementation of the cloud provider

implementation varies by cloud provider.
Kubernetes users will typically not need to worry about anything other than the first two types. The cluster admin will typically ensure that the latter types are setup correctly.

If you want to achieve an in-depth understanding of the Kubernetes.then enroll in Mindmajix’s Kubernetes online training.

Thanks and Regards,
Lavanya Sreepada.

Can i know how can avoid the same zabbix proxy or zabbix agent host names can set to be different when you increase the replicas for the deployments

i am able to run multiple pods for zabbix proxy service

i have using zabbix-proxy and its db in a single pod and rs >1 can possible in zabbix orchestration?