Networking#

Warning

Setting up networking for OSMO requires cloud networking experience, including:

  • Creating and managing SSL/TLS certificates

  • Configuring DNS records and CNAMEs

  • Associating certificates with load balancers

Please work with IT admins and DevOps team or refer to the cloud provider guides below.

Requirements#

Kubernetes Ingress Controller

Install a Kubernetes load balancer in your cluster.

Required for: Load balancing and traffic routing

https://kubernetes.io/docs/concepts/services-networking/ingress-controllers/
Domain and Certificate

Requirements:

  • Fully Qualified Domain Name (FQDN) for your OSMO instance

  • Valid SSL/TLS certificate for your domain

Example: osmo.example.com

DNS Configuration

Configure DNS CNAME record pointing your FQDN to the load balancer endpoint.

Required for: Domain name resolution

Keycloak SSO

Dedicated FQDN and certificate for the Keycloak instance.

Example: auth-osmo.example.com

Port Forwarding (Optional)

FQDN and certificate for wildcard subdomain for UI port forwarding.

Example: *.osmo.example.com

../../_images/network_components.svg

See also

CSP (Cloud Service Provider) Networking Guides:

CSP

DNS Management

Certificate Management

Load Balancer

AWS

Route 53 for DNS

AWS Certificate Manager

ELB Certificate Management

Azure

Azure DNS

Azure Certificates

Application Gateway SSL

GCP

Cloud DNS

Certificate Manager

Load Balancer SSL

On this page