Raw content addition

2019-03-05 07:28:14 -05:00 · 2019-03-05 07:28:14 -05:00 · 1afa196b7a
parent f5f6557a29
commit 1afa196b7a
6 changed files with 46 additions and 130 deletions
--- a/ee/ucp/images/interlock_service_clusters.png~HEAD
+++ b/ee/ucp/images/interlock_service_clusters.png~HEAD
--- a/ee/ucp/images/interlock_service_clusters.png~Raw
+++ b/ee/ucp/images/interlock_service_clusters.png~Raw
--- a/ee/ucp/interlock/deploy/upgrade.md
+++ b/ee/ucp/interlock/deploy/upgrade.md
@ -1,129 +0,0 @@
 ---
 title: Layer 7 routing upgrade
 description: Learn how to upgrade your existing layer 7 routing solution
 keywords: routing, proxy, hrm
 redirect_from:
  - /ee/ucp/interlock/upgrade/
 ---
 The [HTTP routing mesh](/datacenter/ucp/2.2/guides/admin/configure/use-domain-names-to-access-services.md)
 functionality was redesigned in UCP 3.0 for greater security and flexibility.
 The functionality was also renamed to "layer 7 routing", to make it easier for
 new users to get started.
 [Learn about the new layer 7 routing functionality](../index.md).
 To route traffic to your service you apply specific labels to your swarm
 services, describing the hostname for the service and other configurations.
 Things work in the same way as they did with the HTTP routing mesh, with the
 only difference being that you use different labels.
 You don't have to manually update your services. During the upgrade process to
 3.0, UCP updates the services to start using new labels.
 This article describes the upgrade process for the routing component, so that
 you can troubleshoot UCP and your services, in case something goes wrong with
 the upgrade.
 If you are using the HTTP routing mesh, and start an upgrade to UCP 3.0:
 1. UCP starts a reconciliation process to ensure all internal components are
 deployed. As part of this, services using HRM labels are inspected.
 2. UCP creates the `com.docker.ucp.interlock.conf-<id>` based on HRM configurations.
 3. The HRM service is removed.
 4. The `ucp-interlock` service is deployed with the configuration created.
 5. The `ucp-interlock` service deploys the `ucp-interlock-extension` and
 `ucp-interlock-proxy-services`.
 The only way to rollback from an upgrade is by restoring from a backup taken
 before the upgrade. If something goes wrong during the upgrade process, you
 need to troubleshoot the interlock services and your services, since the HRM
 service won't be running after the upgrade.
 [Learn more about the interlock services and architecture](../architecture.md).
 ## Check that routing works
 After upgrading to UCP 3.0, you should check if all swarm services are still
 routable.
 For services using HTTP:
 ```bash
 curl -vs http://<ucp-url>:<hrm-http-port>/ -H "Host: <service-hostname>"
 ```
 For services using HTTPS:
 ```bash
 curl -vs https://<ucp-url>:<hrm-https-port>
 ```
 After the upgrade, check that you can still use the same hostnames to access
 the swarm services.
 ## The ucp-interlock services are not running
 After the upgrade to UCP 3.0, the following services should be running:
 * `ucp-interlock`: monitors swarm workloads configured to use layer 7 routing.
 * `ucp-interlock-extension`: Helper service that generates the configuration for
 the `ucp-interlock-proxy` service.
 * `ucp-interlock-proxy`: A service that provides load balancing and proxying for
 swarm workloads.
 To check if these services are running, use a client bundle with administrator
 permissions and run:
 ```bash
 docker ps --filter "name=ucp-interlock"
 ```
 * If the `ucp-interlock` service doesn't exist or is not running, something went
 wrong with the reconciliation step.
 * If this still doesn't work, it's possible that UCP is having problems creating
 the `com.docker.ucp.interlock.conf-1`, due to name conflicts. Make sure you
 don't have any configuration with the same name by running:
   ```
   docker config ls --filter "name=com.docker.ucp.interlock"
   ```
 * If either the `ucp-interlock-extension` or `ucp-interlock-proxy` services are
 not running, it's possible that there are port conflicts.
 As a workaround re-enable the layer 7 routing configuration from the
 [UCP settings page](deploy/index.md). Make sure the ports you choose are not
 being used by other services.
 ## Workarounds and clean-up
 If you have any of the problems above, disable and enable the layer 7 routing
 setting on the [UCP settings page](index.md). This redeploys the
 services with their default configuration.
 When doing that make sure you specify the same ports you were using for HRM,
 and that no other services are listening on those ports.
 You should also check if the `ucp-hrm` service is running. If it is, you should
 stop it since it can conflict with the `ucp-interlock-proxy` service.
 ## Optionally remove labels
 As part of the upgrade process UCP adds the
 [labels specific to the new layer 7 routing solution](../usage/labels-reference.md).
 You can update your services to remove the old HRM labels, since they won't be
 used anymore.
 ## Optionally segregate control traffic
 Interlock is designed so that all the control traffic is kept separate from
 the application traffic.
 If before upgrading you had all your applications attached to the `ucp-hrm`
 network, after upgrading you can update your services to start using a
 dedicated network for routing that's not shared with other services.
 [Learn how to use a dedicated network](../usage/index.md).
 If before upgrading you had a dedicate network to route traffic to each service,
 Interlock will continue using those dedicated networks. However the
 `ucp-interlock` will be attached to each of those networks. You can update
 the `ucp-interlock` service so that it is only connected to the `ucp-hrm` network.
--- a/ee/ucp/interlock/index.md
+++ b/ee/ucp/interlock/index.md
@ -1,10 +1,18 @@
 ---
 title: Layer 7 routing overview
 description: Learn how to route layer 7 traffic to your Swarm services
 <<<<<<< HEAD
 keywords: routing, UCP, interlock, load balancing
 ---
 Application-layer (Layer 7) routing is the application routing and load balancing (ingress routing) system included with Docker Enterprise for Swarm orchestration. Interlock architecture takes advantage of the underlying Swarm components to provide scalable Layer 7 routing and Layer 4 VIP mode functionality.
 =======
 keywords: routing, proxy
 ---
 ## Introduction
 Interlock is the application routing and load balancing (ingress routing) system included with Docker Enterprise for Swarm orchestration. Interlock takes advantage of the underlying Swarm components to provide scalable Layer 7 routing and Layer 4 VIP mode functionality.
 >>>>>>> Raw content addition
 Interlock is specific to the Swarm orchestrator. If you're trying to route
 traffic to your Kubernetes applications, check
--- a/ee/ucp/interlock/usage/default-backend.md
+++ b/ee/ucp/interlock/usage/default-backend.md
@ -0,0 +1,37 @@
 ---
 title: Default host
 description: Learn how to publish a service to be a default host.
 keywords: routing, proxy
 ---
 # Publishing a default host service
 The following example publishes a service to be a default host. The service responds
 whenever there is a request to a host that is not configured.
 First, create an overlay network so that service traffic is isolated and secure:
 ```bash
 $> docker network create -d overlay demo
 1se1glh749q1i4pw0kf26mfx5
 ```
 Next, create the initial service:
 ```bash
 $> docker service create \
    --name demo-default \
    --network demo \
    --detach=false \
    --replicas=1 \
    --label com.docker.lb.default_backend=true \
    --label com.docker.lb.port=8080 \
    ehazlett/interlock-default-app
 ```
 Interlock detects when the service is available and publishes it. After tasks are running
 and the proxy service is updated, the application is available via any url that is not
 configured:
 ![Default Backend](../../images/interlock_default_backend.png)