Skip to content

Instantly share code, notes, and snippets.

@shinji62

shinji62/req.md

Created February 28, 2017 08:05
Show Gist options
  • Save shinji62/a1daefc5cf309b27faaa45653a054135 to your computer and use it in GitHub Desktop.
Save shinji62/a1daefc5cf309b27faaa45653a054135 to your computer and use it in GitHub Desktop.
Download ZIP
req.md
Raw
req.md

Domain requirements

*.domain.com

For SSL, could SAN or NOT :

*.domain.com
*.apps.domain.com
*.system.domain.com
*.uaa.system.domain.com
*.login.system.domain.com

Openstack Network

3 internal network /24

  • 1 for Elastic runtime
  • 1 for Service Network for PCF
  • 1 for Other bosh deployment

LB ==> (no encrypted) PCF Router (*.domain.com)

Port

  • 80(LB) ==> 80(floating ip)
  • 443(LB) ==> 80(floating ip)

Reservce 2 floating ip for 2 PCF router (HA / no downtime deployment)

Healthcheck:

  • type http
  • service port 8080
  • endpoint "GET /health"
  • interval 5sec threshold 16sec

LB method

  • Least connexion

You need headers:

  • X-Forwarded-For
  • X-Forwarded-Proto

You can create iRules if needed

iRules Name: cf-xforward-for

Definition: when HTTP_REQUEST { HTTP::header insert X-Forwarded-For [IP::remote_addr] }

iRule Name: cf-xforward-proto-https

Definition: when HTTP_REQUEST { HTTP::header insert X-Forwarded-Proto "https" }

iRule Name: cf-xforward-proto-http Definition: `when HTTP_REQUEST { HTTP::header insert X-Forwarded-Proto "http" }``

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment