Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/kubewharf/kubegateway
Specific Layer7 Gateway for kube-apiserver
https://github.com/kubewharf/kubegateway
apiserver gateway kubernetes load-balancer
Last synced: about 9 hours ago
JSON representation
Specific Layer7 Gateway for kube-apiserver
- Host: GitHub
- URL: https://github.com/kubewharf/kubegateway
- Owner: kubewharf
- License: apache-2.0
- Created: 2022-07-14T09:00:16.000Z (over 2 years ago)
- Default Branch: main
- Last Pushed: 2024-07-26T07:21:39.000Z (5 months ago)
- Last Synced: 2024-12-14T05:02:23.345Z (7 days ago)
- Topics: apiserver, gateway, kubernetes, load-balancer
- Language: Go
- Homepage:
- Size: 1.22 MB
- Stars: 487
- Watchers: 16
- Forks: 61
- Open Issues: 5
-
Metadata Files:
- Readme: README.md
- Contributing: CONTRIBUTING.md
- License: LICENSE
- Code of conduct: CODE_OF_CONDUCT.md
- Governance: GOVERNANCE.md
Awesome Lists containing this project
- awesome-ops - kubewharf/kubegateway - 2.0|472|2022-07-14|2024-07-26 | kube-gateway 是字节跳动内部管理海量 kubernetes 集群的最佳实践。 它是为 kube-apiserver 的 HTTP2 流量专门设计并定制的七层负载均衡代理。 目标是为海量的大规模 kubernetes 集群(千级 node 以上)提供灵活的稳定的流量治理方案。 | (K8S-Network)
README
# KubeGateway
English | [简体中文](README.zh_CN.md)
## Overview
Kube-gateway is a best practice for managing massive kubernetes clusters within ByteDance.
It is a layer 7 load balancing proxy specifically designed and customized for HTTP2 flow for kube-apiserver.
The goal is to provide flexible and stable flow governance solutions for massive large-scale kubernetes clusters (more than 1,000 nodes).
## Features
In terms of traffic governance:
- It proactively performs request-level load balancing for multiple kube-apiservers;
- It provides kube-apiserver with routing rules customized for flow characteristics. It can distinguish requests through verb, apiGroup, resource, user, userGroup, serviceAccounts, nonResourceURLs and other information, and perform differentiated forwarding. It also has flow governance functions such as limited flow, degradation, and fuse;
- It converges the number of TCP connections on a single kube-apiserver instance by at least an order of magnitude;
- Its configuration, such as routing, takes effect immediately without restarting the service.In terms of massive cluster proxies:
- It is able to dynamically add and remove proxy support for new clusters;
- It provides different TLS certificates and ClientCA for different clusters;
- It provides allow/disable list, monitoring alarm, fuse and other functions.## Detailed Doc
- [Design documentation](docs/en/design.md)
- [Manually Setup](docs/en/manually-setup.md)
- [Develop Guide](docs/en/quick_start.md)
- [Performance testing](docs/en/benchmark.md)## Contributing
Please refer to [Contributing](CONTRIBUTING.md)
## Code of Conduct
Please refer to [Code of Conduct](CODE_OF_CONDUCT.md) for more details.
## Contact Us
Please refer to [Maintainers](MAINTAINERS.md)
## Security
If you find a potential security issue in this project, or think you may have discovered a security issue.
We hope you notify Bytedance Security via our [Security Center](https://security.bytedance.com/src) or [Vulnerability Report Email]([email protected]).
Please **do not** create a public GitHub issue.
## License
This project follows [Apache-2.0 License](LICENSE).