https://gerardsamuel.me/tags/gateway-api/Recent content in Gateway-Api on Gerard SamuelHugo -- gohugo.ioenThu, 06 Feb 2025 11:17:51 -0500https://gerardsamuel.me/posts/how-to-secure-cilium-gateway-api-with-cert-manager/Thu, 06 Feb 2025 11:17:51 -0500https://gerardsamuel.me/posts/how-to-secure-cilium-gateway-api-with-cert-manager/<p>In my Hashicorp <a href="https://www.nomadproject.io/" target="_blank" rel="noreferrer">Nomad</a> cluster, I am using <a href="https://traefik.io/traefik/" target="_blank" rel="noreferrer">Traefik</a> to proxy external connections to the running containers, and Traefik also terminates TLS connections. While it is perfectly okay to duplicate this role in Kubernetes, I decided to go another route and leverage Gateway API as the reverse proxy. To build upon my existing work with <a href="https://gerardsamuel.me/posts/howto-setup-kubernetes-cilium-bgp-with-unifi-v4.1-router/" >Gateway API</a>, let me set up an HTTP/HTTPS proxy with redirection using Gateway API and secure it with <a href="https://cert-manager.io/" target="_blank" rel="noreferrer">cert-manager</a> and a few friends.</p>