Skip to content

Commit

Permalink
expand readme
Browse files Browse the repository at this point in the history
  • Loading branch information
@Joseph-Irving
Joseph-Irving committed Jul 3, 2018
1 parent c203c59 commit a1e76ca
Show file tree
Hide file tree
Showing 3 changed files with 42 additions and 1 deletion.
43 changes: 42 additions & 1 deletion README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -5,8 +5,46 @@ Yggdrasil is an Envoy control plane that configures listeners and clusters based
## Usage
Yggdrasil will watch all Ingresses in each Kubernetes Cluster that you give it via the Kubeconfig flag. Any ingresses that match the ingress class that you have specified will have a listener and cluster created that listens on the same Host as the Host defined in the Ingress object. If you have multiple clusters Yggdrasil will create a cluster address for each Kubernetes cluster your Ingress is in, the address is the address of the ingress loadbalancer.

## Setup
The basic setup is to have a cluster of envoy nodes which connect to Yggdrasil via GRPC and get given dynamic listeners and clusters from it. Yggdrasil is set up to talk to each Kubernetes api where it will watch the ingresses for any that are using the ingress class it's watching for.

![Yggdrasil Diagram](/img/yggdrasil.png)

Your envoy nodes only need a very minimal config where they are simply set up to get dynamic clusters and listeners from Yggdrasil.
Example envoy config:
```yaml
admin:
access_log_path: /tmp/admin_access.log
address:
socket_address: { address: 0.0.0.0, port_value: 9901 }

dynamic_resources:
lds_config:
api_config_source:
api_type: GRPC
cluster_names: [xds_cluster]
cds_config:
api_config_source:
api_type: GRPC
cluster_names: [xds_cluster]

static_resources:
clusters:
- name: xds_cluster
connect_timeout: 0.25s
type: STATIC
lb_policy: ROUND_ROBIN
http2_protocol_options: {}
hosts: [{ socket_address: { address: yggdrasil, port_value: 8080 }}]
```
Your ingress set up then looks like this:
![Envoy Diagram](/img/envoysetup.png)
Where the envoy nodes are loadbalancing between each cluster for a given ingress.
## Configuration
Yggdrasil can be configured using a config file:
Yggdrasil can be configured using a config file e.g:
```json
{
"nodeName": "foo",
Expand All @@ -27,6 +65,9 @@ Yggdrasil can be configured using a config file:
]
}
```
`nodeName` is the same `node-name` that you start your envoy nodes with.
The cert and key are used to talk over https with the ingress loadbalancers.
The `ingressClass` is the ingress class that yggdrasil will watch for.
Each cluster represents a different Kubernetes cluster with the token being a service account token for that cluster. `ca` is the Path to the ca certificate for that cluster.

## Flags
Expand Down
Binary file added img/envoysetup.png
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added img/yggdrasil.png
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.

0 comments on commit a1e76ca

Please sign in to comment.