# EKS ALB

{{tag>eks alb}}

### AWS Load Balancer Controller에 대한 OIDC 공급자 및 IAM 역할 생성

- region-code : ap-northeast-2
- cluster : eks-demo

<code bash>
eksctl utils associate-iam-oidc-provider --region region-code \
--cluster your-cluster-name --approve
</code>

<code bash>
eksctl utils associate-iam-oidc-provider --region ap-northeast-2 \
--cluster eks-demo --approve
</code>

### IAM 정책 다운로드

<code>
curl -o iam_policy.json https://raw.githubusercontent.com/kubernetes-sigs/aws-load-balancer-controller/v2.2.0/docs/install/iam_policy.json
</code>

### 정책 생성

<code>
aws iam create-policy --policy-name AWSLoadBalancerControllerIAMPolicy --policy-document file://iam_policy.json
</code>

### 서비스 계정 생성

<code>
eksctl create iamserviceaccount --cluster=eks-demo --namespace=kube-system --name=aws-load-balancer-controller --attach-policy-arn=arn:aws:iam::YOUR_AWS_ACCOUNT_ID:policy/AWSLoadBalancerControllerIAMPolicy --override-existing-serviceaccounts --approve
</code>

### AWS ALB Ingress Controller for Kubernetes 제거

### 설치 확인

<code>
kubectl get deployment -n kube-system alb-ingress-controller
</code>

## Helm 3.0.0을 사용하여 AWS Load Balancer Controller 설치

<code>
kubectl apply -k "github.com/aws/eks-charts/stable/aws-load-balancer-controller//crds?ref=master"
</code>

<code>
helm repo add eks https://aws.github.io/eks-charts
</code>

<code>
helm upgrade -i aws-load-balancer-controller eks/aws-load-balancer-controller \
--set clusterName=eks-demo --set serviceAccount.create=false \
--set serviceAccount.name=aws-load-balancer-controller -n kube-system
</code>

### 설치 확인

<code>
kubectl get deployment -n kube-system aws-load-balancer-controller
</code>

## Links

- https://aws.amazon.com/ko/premiumsupport/knowledge-center/eks-alb-ingress-aws-waf/