Configuring External Load Balancer for GCP
Applies to: Kyvos Enterprise Kyvos Cloud (SaaS on AWS) Kyvos AWS Marketplace
Kyvos Azure Marketplace Kyvos GCP Marketplace Kyvos Single Node Installation (Kyvos SNI)
Note
While configuring an external load balancer for GCP, ensure that the frontend and backend certificates are in the same format.
Creating and configuring a load balancer
Creating instance group
Create an instance group.
To do this, search Instance Group in the Search box and click the Create Instance Group option.Click the New unmanaged instance group.
On the page, provide the following details:
Type a Name to your instance group. For example, kyvos-instancegroup.
From the Network and Instances list, select the Networks shared with me option.
From the shared subnetwork list, select the required option.
From the VM Instances list, select the VMs on which you want to use this backend service.
You must select the VMs used for the Kyvos Webserver node.In the Port Mapping area, enter Port name 1 as HTTPS and Port number 1 as 8443.
Click Create.
Creating a load balancer
Select the preferred project.
On the navigation pane, in the Networking section, select Network services.
In the Network Services list, select the Load balancing option.
On the Load balancing page, click Create Load Balancer.
In the Create a load balancer section, click the HTTP(S) Load Balancing option.
Click the Start Configuration link provided at the bottom of the page.
In the Internet facing or internal only section, select the From internet to my VMs or serverless services option.
In the Global or Regional section, select the Global HTTP(S) Load Balancer (classic) option.
Click Continue.
Configuring frontend services
Click Frontend Configuration.
On the page, enter details as:
Provide a name to the frontend configuration, such as frontendwebserverhttps.
In the Protocol list, select the HTTPS option.
From the Certificate list, select the appropriate option.
Click Done.
Configuring backend services
Switch to the Backend tab. The Backend configuration section is displayed.
Click Create a Backend Service.
Provide a Name to create a backend service—for example, backendservicehttps.
In the Protocol list, select the HTTPS option.
In the Named port box, type https.
In the Timeout box, the default time is displayed. You can modify the time as needed.
In the New backend section, select the instance group you created in the previous step.
In the Health check section, click the Create a Health Check option.
In the Health Check section, provide a Name, such as kyvoshealthcheck.
Enter details as:
In the Protocol list, select HTTPS.
In the Port list, select port 8443.
In the Request path list, enter /kyvos/
Click the Save button.
Scroll down and expand the Advanced Configurations section.
In the Bypass cache on the request header section, select the Client IP option from the Session Affinity list and click Create.
Provide a Name, such as httpskyvoswebserver.
Click Create.
The load balancer is created with requisite configurations.
Copyright Kyvos, Inc. All rights reserved.