Document how to set up AWS ALB with ECK

[pebrc]

We support EKS as a k8s service but we are currently not documenting how to setup an Ingress with an AWS ALB. While this might seem out of scope of what ECK does there are two challenges that make it worthwhile to add additional documentation around that:

• ALBs require an unauthenticated endpoint for their health checks
• We deploy Elasticsearch by default with self-signed certificates which we cannot configure into the ALB

The goal of this issue is to explore workarounds and document a working configuration in the docs.

https://discuss.elastic.co/t/does-elastic-have-a-healthcheck-endpoint-that-does-not-require-username-and-password/217090

[nitinprabhu]

@pebrc Hi 👋 Is this being looked at the moment ? We are currently using AWS ALB with EKS and want to configure the Elasticsearch health check.

One option would be do as below but not great. Is there any other option you guys are thinking about ?

alb.ingress.kubernetes.io/success-codes: '401'
alb.ingress.kubernetes.io/healthcheck-path" = "/_cat/health"

[sreedharbukya]

I think may better to keep as

alb.ingress.kubernetes.io/success-codes: '200'
alb.ingress.kubernetes.io/healthcheck-path" = "/login"

[ricardorqr]

Which one is the best?