Tetrate Service BridgeVersion: nextSegmentation Membership
The segmentation feature is in an early access alpha state. Before trying this in a non production environment, please reach out to Tetrate first.
The Segmentation Membership resource configures the resources that belong to particular zones in the different segmentation policies. Membership is defined statically, by using this Membership resource. Multiple Segmentation Membership resources can hold selectors for the same Segmentation Type Zones. The additive amalgamation of selectors will be used.
The following example shows how to statically define the resource that belong to the
red zone in the ring segmentation policy.
apiVersion: segmentation.tsb.tetrate.io/v1
kind: SegmentationMembership
metadata:
organization: myorg
name: ring-membership
spec:
policy: ring
zones:
- name: red
fqnSelector:
- "organizations/myorg/tenants/mytenant"
- "organizations/myorg/tenants/mytenant/workspaces/myworkspace"
- "organizations/myorg/tenants/mytenant/workspaces/ws1/securitygroups/sg1"
SegmentationMembership
The SegmentationMembership resource configures static resource membership for segmentation policies and zones.
| Field | Description | Validation Rule |
|---|---|---|
policy | string | – |
zones | List of tetrateio.api.tsb.segmentation.v1.SegmentationMembership.ZoneMembership | – |
ZoneMembership
Zone membership configures membership of resources to a particular zone in the segmentation policy.
| Field | Description | Validation Rule |
|---|---|---|
name | string | string = { |
fqnSelector | List of string | repeated = { |