Hello, need some help
So i have two services deployed on fly.io as gRPC client and server. And i cannot make them connect using the private networking.
The client is calling: [region].rust-grpc-users.internal, and he doest not see the server.
Server setup:
# fly.toml file generated for rust-grpc-users on 2023-03-02T10:20:05+01:00
app = "rust-grpc-users"
kill_signal = "SIGINT"
kill_timeout = 5
processes = []
[env]
PORT= 3000
[experimental]
allowed_public_ports = []
auto_rollback = true
[[services]]
http_checks = []
internal_port = 3000
processes = ["app"]
protocol = "tcp"
script_checks = []
[services.concurrency]
hard_limit = 25
soft_limit = 20
type = "connections"
#[[services.ports]]
# force_https = true
# handlers = ["http"]
# port = 80
[[services.ports]]
handlers = ["tls"]
port = "443"
tls_options = { "alpn" = ["h2"] }
[[services.tcp_checks]]
grace_period = "1s"
interval = "15s"
restart_limit = 0
timeout = "2s"
Any help please?
kdevan
March 5, 2023, 6:18am
2
I’m not sure but you could try [region].rust-grpc-users.internal:3000
with the port?
Tried, but still nothing Added private_network = true to expermiental, but still nothing.
kdevan
March 5, 2023, 6:31am
4
Could try rust-grpc-users.internal:3000
without the region. Both need to be same region for that to work but even so this would be a bit more catch all.
Tried every combination, still nothing
Is the server listening for 6pn connections on IPv6 (::
or fly-local-6pn
instead of 0.0.0.0
)? See: Fly io Newbie: Making internal requests between apps - #3 by ignoramous Consequently, is the client capable of making IPv6 connections?
If so, and if you are deploying Apps v1 (nomad), then may be wait it out a bit; ref: Can anyone from Fly confirm if our support email is actually working?
So i started server on [::]:443, and client is using the standard @grpc /grpc-js library, and trying to connect to rust-grpc-users.internal.
Not working
The same config, but pointing directly at server hostname is working. But i want to hide the server, so that’s it’s only accesible from “inside”. Maybe i can do that some other way? Then i will not need the private network ;p
system
Closed
March 13, 2023, 5:42pm
8
This topic was automatically closed 7 days after the last reply. New replies are no longer allowed.