ugated

command

v0.0.0-...-8ac4b46 Latest Latest Go to latest Published: Feb 29, 2024 License: Apache-2.0 Imports: 15 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/costinm/ugate

Links

Open Source Insights

README ¶

uGate primary goal is to provide a minimal sidecar/gateway that delegates to an envoy or other advanced gateway.

It should be possible to use it as a swap-in for istio proxy, in particular for low-memory devices.

In a deployment using both ingress and egress gateways, the sidecar doesn't need a lot of dynamic config: can simply capture all outbound traffic and forward it to the egress server. For inbound it will only use the BTS port, and forward to the local port.

For capture, a simplified form of the script is used: Example:

PROXY_GROUP=costin INBOUND_PORTS_INCLUDE=3001,5201 OUTBOUND_PORTS_INCLUDE=5201 bash -x ./iptables.sh
iptables-save -c| grep ISTIO
tcpdump -n -i any port 15006

# Turn off
PROXY_GROUP=costin INBOUND_PORTS_INCLUDE=- OUTBOUND_PORTS_INCLUDE=- bash -x ./iptables.sh

Iperf3 should show line speed with and without proxy.

Example numbers (Gbps):

iperf3 -c 10.1.10.228
Raw: 28.4 

Direct proxy:
iperf3 -c 10.1.10.228 -p 3001
21.2

IPtables enabled: 20.7 (outbound capture only)

Documentation ¶

There is no documentation for this package.

Source Files ¶

View all Source files

ugated.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL