forked from pivotal-cf/docs-pcf-install
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy path_networking-gcp.html.md.erb
41 lines (28 loc) · 2.63 KB
/
_networking-gcp.html.md.erb
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
1. Select **Networking**.
1. Leave the **Router IPs**, **SSH Proxy IPs**, **HAProxy IPs**, and **TCP Router IPs** fields blank. You do not need to complete these fields when deploying PCF to GCP.
<p class="note"><strong>Note</strong>: You specify load balancers in the **Resource Config** section of Elastic Runtime later on in the installation process. See the <a href="#config-lb">Configure Load Balancers</a> section of this topic for more information.</p>
1. Under **Select one of the following point-of-entry options**, choose the **Forward SSL to Elastic Runtime Router** option.
<p class="note"><strong>Note</strong>: As a clarification, GCP load balancers actually forward both encrypted (WebSockets) and unencrypted (HTTP and TLS-terminated HTTPS) traffic to the Elastic Runtime Router (Gorouter). This point-of-entry selection accommodates this specific characteristic of GCP deployments. For more details on network topology in GCP, see [Reference Architecture for Pivotal Cloud Foundry on GCP](../refarch/gcp/gcp_ref_arch.html).</p>
1. Complete the fields for the **Router SSL Termination Certificate and Private Key** and **Router SSL Ciphers**.
For details about providing SSL termination certificates and keys, see the [Providing a Certificate for your SSL Termination Point](../opsguide/security_config.html#config) topic.
<%= image_tag 'images/ert_lb_encrypted_certs.png' %>
1. <%= partial 'ssl_verification' %>
1. <%= partial 'insecure_cookies' %>
1. <%= partial 'zipkin_enable' %>
<%= image_tag 'images/ert_disable_ssl_cookies_zipkin.png' %>
1. <%= partial 'route_services' %>
1. The **Loggregator Port** defaults to `443` if left blank. Enter a new value to override the default.
1. <%= partial 'app_subnet_field' %>
1. <%= partial 'app_mtu' %>
<%= image_tag 'images/ert_log_port_mtu.png' %>
1. <%= partial 'lb_unhealthy_threshold' %>
1. <%= partial 'lb_healthy_threshold' %>
<%= image_tag 'images/router_lb_thresholds.png' %>
1. Enter a value for **Router Max Idle Keepalive Connections**. See [Considerations for Configuring max\_idle\_connections](../adminguide/routing-keepalive.html#considerations).
<%= image_tag 'images/keepalive.png' %>
1. <%= partial 'http_headers_to_log' %>
1. <%= partial 'tcp_routing_enable' %>
1. For GCP, you also need to specify the name of a GCP TCP load balancer in the **LOAD BALANCER** column of TCP Router job of the **Resource Config** screen. You configure this later on in Elastic Runtime. See <a href="#configure-lb">Configure Load Balancers</a> section of this topic.</p>
1. <%= partial 'tcp_routing_disable' %>
1. Click **Save**.