https://github.com/metal-stack/gardener-vpn-gateway

A proxy service that enables a control plane component to connect to a service in its shoot cluster
https://github.com/metal-stack/gardener-vpn-gateway

Last synced: 28 days ago
JSON representation

A proxy service that enables a control plane component to connect to a service in its shoot cluster

• Host: GitHub
• URL: https://github.com/metal-stack/gardener-vpn-gateway
• Owner: metal-stack
• License: agpl-3.0
• Created: 2023-11-08T11:52:14.000Z (over 2 years ago)
• Default Branch: main
• Last Pushed: 2025-07-10T07:46:11.000Z (11 months ago)
• Last Synced: 2025-07-10T16:22:14.424Z (11 months ago)
• Language: Go
• Size: 129 KB
• Stars: 1
• Watchers: 5
• Forks: 0
• Open Issues: 1
• Metadata Files:
  • Readme: README.md
  • Contributing: CONTRIBUTING.md
  • License: LICENSE
  • Codeowners: CODEOWNERS

Awesome Lists containing this project

README

          
# Gardener VPN Gateway

This is a small piece of software that is intended to run in the shoot controlplane of a [Gardener](https://github.com/gardener/gardener) shoot cluster. It watches for a service in the shoot for incoming connections and listens for incoming connections, which it will forward through the VPN between seed and shoot to the service in the cluster.

The point of this is that the VPN gateway will take care of talking to the VPN proxy, while for the client in the controlplane it looks like a transparent connection.

## Current scope for the implementation

- Only one service per running VPN gateway instance

### Use with proxy (mTLS proxy with http-connect)

## Testing locally

TODO this is not updated for the new vpn gateway role; will need to evaluate if local testing still makes sense and if so how to do this.