Tetrate Service BridgeVersion: 1.6.xGateways Management
Intro
Resources
Install IngressGatewayDefine method to install IngressGateway on k8s/ocpConfigure IngressGatewayDefines destination host for traffic entering the mesh and traffic routing policies (north-south)Install Tier1GatewayDefine method to install Tier1Gateway on k8s/ocpConfigure Tier1GatewayDefines way to configure workload to act as a gateway that distributes traffic across one or more ingress gateways
install.tetrate.io
tsb/gateway/v2
Install IngressGateway
Sample
sample/gateway-management/installingressgateway.yaml
apiVersion: install.tetrate.io/v1alpha1
kind: IngressGateway
metadata:
name: bookinfo-ingressgateway
namespace: bookinfo
spec:
kubeSpec:
service:
type: LoadBalancer
Details
- using
kubectlorocto create IngressGateway deployment
Configure IngressGateway
Sample
sample/gateway-management/ingressgateway.yaml
apiVersion: gateway.tsb.tetrate.io/v2
kind: IngressGateway
metadata:
organization: tsbdemo
tenant: bookinfo
workspace: bookinfo-workspace
group: bookinfo-gatewaygroup
name: bookinfo-ingress
spec:
workloadSelector:
namespace: bookinfo
labels:
app: bookinfo-gateway
http:
- name: bookinfo-plaintext
port: 80
hostname: bookinfo.tetrate.com
routing:
rules:
- redirect:
authority: bookinfo.tetrate.com
port: 443
redirectCode: 301
scheme: https
- name: bookinfo-secure
port: 443
hostname: bookinfo.tetrate.com
tls:
mode: SIMPLE
secretName: bookinfo-cert
routing:
rules:
- route:
host: ns1/productpage.ns1.svc.cluster.local
port: 9080
Fields
Interpretations of fields in the sample
workloadSelector: gateway withapp: bookinfo-gatewaylabel will be the edge proxy.http: application type.routing: rules for traffic flows.tls: tls mode and location of certs if required.
Install Tier1Gateway
Sample
sample/gateway-management/installtier1gateway.yaml
apiVersion: install.tetrate.io/v1alpha1
kind: Tier1Gateway
metadata:
name: bookinfo-tier1-gateway
namespace: tier1
spec:
kubeSpec:
service:
type: LoadBalancer
Details
- using
kubectlorocto create Tier1Gateway deployment
Configure Tier1Gateway
Sample
sample/gateway-management/ingressgateway.yaml
apiVersion: gateway.tsb.tetrate.io/v2
kind: Tier1Gateway
metadata:
organization: tsbdemo
tenant: bookinfo
workspace: bookinfo-workspace
group: bookinfo-tier1-gg
name: bookinfo-tier1
spec:
workloadSelector:
namespace: tier1
labels:
app: bookinfo-tier1-gateway
externalServers:
- hostname: bookinfo.tetrate.com
name: bookinfo
port: 443
tls:
mode: SIMPLE
secretName: bookinfo-certs
clusters:
- name: c1
weight: 90
- name: c2
weight: 10
Fields
Interpretations of fields in the sample
workloadSelector: gateway withapp: bookinfo-gatewaylabel will be the edge proxy.externalServers: servers exposed by the gateway externally.tls: tls mode and location of certs if required.clusters: The destination clusters that contain ingress gateways exposing the hostname.