Skip to content

Commit

Permalink
ExternalName warning about HTTP/TLS
Browse files Browse the repository at this point in the history
Suggested wording from sftim
  • Loading branch information
jimmyjones2 authored Oct 5, 2019
1 parent c51b1d6 commit 3ea99ec
Showing 1 changed file with 5 additions and 0 deletions.
5 changes: 5 additions & 0 deletions content/en/docs/concepts/services-networking/service.md
Original file line number Diff line number Diff line change
Expand Up @@ -911,6 +911,11 @@ forwarding. Should you later decide to move your database into your cluster, you
can start its Pods, add appropriate selectors or endpoints, and change the
Service's `type`.

{{< warning >}}
You may have trouble using ExternalName for some common protocols, including HTTP and HTTPS. If you use ExternalName then the hostname used by clients inside your cluster is different from the name that the ExternalName references.

For protocols that use hostnames this difference may lead to errors or unexpected responses. HTTP requests will have a `Host:` header that the origin server does not recognize; TLS servers will not be able to provide a certificate matching the hostname that the client connected to.
{{< /warning >}}

{{< note >}}
This section is indebted to the [Kubernetes Tips - Part
Expand Down

0 comments on commit 3ea99ec

Please sign in to comment.