jiazhizhong/higress
1
0
Fork 0
mirror of https://github.com/alibaba/higress.git synced 2026-05-24 04:37:25 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
c8bc2d764da771dec6a4fb328ef0c43baeb45683
higress/pkg/ingress/kube/gateway/istio/testdata/reference-policy-tcp.yaml
EndlessSeeker b2b4f72775 Feat: upgrade istio from 1.19.5 to 1.27.1 (#3066)
2025-11-20 14:43:30 +08:00

86 lines
1.6 KiB
YAML
Raw Blame History

apiVersion: gateway.networking.k8s.io/v1beta1
kind: Gateway
metadata:
name: gateway
namespace: higress-system
spec:
addresses:
- value: higress-gateway
type: Hostname
gatewayClassName: higress
listeners:
- name: my-svc
port: 34000
protocol: TCP
allowedRoutes:
namespaces:
from: All
- name: echo
port: 34001
protocol: TCP
allowedRoutes:
namespaces:
from: All
---
apiVersion: gateway.networking.k8s.io/v1beta1
kind: ReferenceGrant
metadata:
name: allow-service-tcp
namespace: service
spec:
from:
- group: gateway.networking.k8s.io
kind: TCPRoute
namespace: higress-system
to:
- group: ""
kind: Service
name: my-svc
---
apiVersion: gateway.networking.k8s.io/v1beta1
kind: ReferenceGrant
metadata:
name: allow-service-http
namespace: default
spec:
from:
- group: gateway.networking.k8s.io
kind: HTTPRoute
namespace: higress-system
to:
- group: ""
kind: Service
name: echo
---
apiVersion: gateway.networking.k8s.io/v1alpha2
kind: TCPRoute
metadata:
name: allowed-my-svc
namespace: higress-system
spec:
parentRefs:
- name: gateway
namespace: higress-system
sectionName: my-svc
rules:
- backendRefs:
- name: my-svc
namespace: service
port: 34000
---
apiVersion: gateway.networking.k8s.io/v1alpha2
kind: TCPRoute
metadata:
name: not-allowed-echo
namespace: higress-system
spec:
parentRefs:
- name: gateway
namespace: higress-system
sectionName: echo
rules:
- backendRefs:
- name: echo
namespace: default
port: 34001
Reference in New Issue View Git Blame Copy Permalink