Jump To Close Expand all Collapse all Table of contents Networking 1. DNS Operator in OpenShift Dedicated Expand section "1. DNS Operator in OpenShift Dedicated" Collapse section "1. DNS Operator in OpenShift Dedicated" 1.1. Checking the status of the DNS Operator 1.2. View the default DNS 1.3. Using DNS forwarding 1.4. Checking DNS Operator status 1.5. Viewing DNS Operator logs 1.6. Setting the CoreDNS log level 1.7. Setting the CoreDNS Operator log level 1.8. Tuning the CoreDNS cache 1.9. Advanced tasks Expand section "1.9. Advanced tasks" Collapse section "1.9. Advanced tasks" 1.9.1. Changing the DNS Operator managementState 1.9.2. Controlling DNS pod placement 1.9.3. Configuring DNS forwarding with TLS 2. Ingress Operator in OpenShift Dedicated Expand section "2. Ingress Operator in OpenShift Dedicated" Collapse section "2. Ingress Operator in OpenShift Dedicated" 2.1. OpenShift Dedicated Ingress Operator 2.2. The Ingress configuration asset 2.3. Ingress Controller configuration parameters Expand section "2.3. Ingress Controller configuration parameters" Collapse section "2.3. Ingress Controller configuration parameters" 2.3.1. Ingress Controller TLS security profiles Expand section "2.3.1. Ingress Controller TLS security profiles" Collapse section "2.3.1. Ingress Controller TLS security profiles" 2.3.1.1. Understanding TLS security profiles 2.3.1.2. Configuring the TLS security profile for the Ingress Controller 2.3.1.3. Configuring mutual TLS authentication 2.4. View the default Ingress Controller 2.5. View Ingress Operator status 2.6. View Ingress Controller logs 2.7. View Ingress Controller status 2.8. Configuring the Ingress Controller Expand section "2.8. Configuring the Ingress Controller" Collapse section "2.8. Configuring the Ingress Controller" 2.8.1. Setting a custom default certificate 2.8.2. Removing a custom default certificate 2.8.3. Autoscaling an Ingress Controller 2.8.4. Scaling an Ingress Controller 2.8.5. Configuring Ingress access logging 2.8.6. Setting Ingress Controller thread count 2.8.7. Configuring an Ingress Controller to use an internal load balancer 2.8.8. Setting the Ingress Controller health check interval 2.8.9. Configuring the default Ingress Controller for your cluster to be internal 2.8.10. Configuring the route admission policy 2.8.11. Using wildcard routes 2.8.12. HTTP header configuration Expand section "2.8.12. HTTP header configuration" Collapse section "2.8.12. HTTP header configuration" 2.8.12.1. Order of precedence 2.8.12.2. Special case headers 2.8.13. Setting or deleting HTTP request and response headers in an Ingress Controller 2.8.14. Using X-Forwarded headers 2.8.15. Enabling HTTP/2 Ingress connectivity 2.8.16. Configuring the PROXY protocol for an Ingress Controller 2.8.17. Specifying an alternative cluster domain using the appsDomain option 2.8.18. Converting HTTP header case 2.8.19. Using router compression 2.8.20. Exposing router metrics 2.8.21. Customizing HAProxy error code response pages 2.8.22. Setting the Ingress Controller maximum connections 2.9. OpenShift Dedicated Ingress Operator configurations 3. OpenShift SDN default CNI network provider Expand section "3. OpenShift SDN default CNI network provider" Collapse section "3. OpenShift SDN default CNI network provider" 3.1. Enabling multicast for a project Expand section "3.1. Enabling multicast for a project" Collapse section "3.1. Enabling multicast for a project" 3.1.1. About multicast 3.1.2. Enabling multicast between pods 4. Network verification for OpenShift Dedicated clusters Expand section "4. Network verification for OpenShift Dedicated clusters" Collapse section "4. Network verification for OpenShift Dedicated clusters" 4.1. Understanding network verification for OpenShift Dedicated clusters 4.2. Scope of the network verification checks 4.3. Automatic network verification bypassing 4.4. Running the network verification manually 5. Configuring a cluster-wide proxy Expand section "5. Configuring a cluster-wide proxy" Collapse section "5. Configuring a cluster-wide proxy" 5.1. Prerequisites for configuring a cluster-wide proxy 5.2. Responsibilities for additional trust bundles 5.3. Configuring a proxy during installation 5.4. Configuring a proxy during installation using OpenShift Cluster Manager 5.5. Configuring a proxy after installation 5.6. Configuring a proxy after installation using OpenShift Cluster Manager 6. CIDR range definitions Expand section "6. CIDR range definitions" Collapse section "6. CIDR range definitions" 6.1. Machine CIDR 6.2. Service CIDR 6.3. Pod CIDR 6.4. Host Prefix 7. Network policy Expand section "7. Network policy" Collapse section "7. Network policy" 7.1. About network policy Expand section "7.1. About network policy" Collapse section "7.1. About network policy" 7.1.1. About network policy Expand section "7.1.1. About network policy" Collapse section "7.1.1. About network policy" 7.1.1.1. Using the allow-from-router network policy 7.1.1.2. Using the allow-from-hostnetwork network policy 7.1.2. Optimizations for network policy with OpenShift SDN 7.1.3. Optimizations for network policy with OVN-Kubernetes network plugin 7.1.4. Next steps 7.2. Creating a network policy Expand section "7.2. Creating a network policy" Collapse section "7.2. Creating a network policy" 7.2.1. Example NetworkPolicy object 7.2.2. Creating a network policy using the CLI 7.2.3. Creating a default deny all network policy 7.2.4. Creating a network policy to allow traffic from external clients 7.2.5. Creating a network policy allowing traffic to an application from all namespaces 7.2.6. Creating a network policy allowing traffic to an application from a namespace 7.2.7. Creating a network policy using OpenShift Cluster Manager 7.3. Viewing a network policy Expand section "7.3. Viewing a network policy" Collapse section "7.3. Viewing a network policy" 7.3.1. Example NetworkPolicy object 7.3.2. Viewing network policies using the CLI 7.3.3. Viewing network policies using OpenShift Cluster Manager 7.4. Deleting a network policy Expand section "7.4. Deleting a network policy" Collapse section "7.4. Deleting a network policy" 7.4.1. Deleting a network policy using the CLI 7.4.2. Deleting a network policy using OpenShift Cluster Manager 7.5. Configuring multitenant isolation with network policy Expand section "7.5. Configuring multitenant isolation with network policy" Collapse section "7.5. Configuring multitenant isolation with network policy" 7.5.1. Configuring multitenant isolation by using network policy 8. Configuring Routes Expand section "8. Configuring Routes" Collapse section "8. Configuring Routes" 8.1. Route configuration Expand section "8.1. Route configuration" Collapse section "8.1. Route configuration" 8.1.1. Creating an HTTP-based route 8.1.2. Configuring route timeouts 8.1.3. HTTP Strict Transport Security Expand section "8.1.3. HTTP Strict Transport Security" Collapse section "8.1.3. HTTP Strict Transport Security" 8.1.3.1. Enabling HTTP Strict Transport Security per-route 8.1.3.2. Disabling HTTP Strict Transport Security per-route 8.1.4. Using cookies to keep route statefulness Expand section "8.1.4. Using cookies to keep route statefulness" Collapse section "8.1.4. Using cookies to keep route statefulness" 8.1.4.1. Annotating a route with a cookie 8.1.5. Path-based routes 8.1.6. HTTP header configuration Expand section "8.1.6. HTTP header configuration" Collapse section "8.1.6. HTTP header configuration" 8.1.6.1. Order of precedence 8.1.6.2. Special case headers 8.1.7. Setting or deleting HTTP request and response headers in a route 8.1.8. Route-specific annotations 8.1.9. Creating a route using the default certificate through an Ingress object 8.1.10. Creating a route using the destination CA certificate in the Ingress annotation 8.2. Secured routes Expand section "8.2. Secured routes" Collapse section "8.2. Secured routes" 8.2.1. Creating a re-encrypt route with a custom certificate 8.2.2. Creating an edge route with a custom certificate 8.2.3. Creating a passthrough route Legal Notice Settings Close Language: 日本語 简体中文 한국어 English Language: 日本語 简体中文 한국어 English Format: Multi-page Single-page PDF Format: Multi-page Single-page PDF Language and Page Formatting Options Language: 日本語 简体中文 한국어 English Language: 日本語 简体中文 한국어 English Format: Multi-page Single-page PDF Format: Multi-page Single-page PDF Networking OpenShift Dedicated 4Configuring OpenShift Dedicated networkingRed Hat OpenShift Documentation TeamLegal NoticeAbstract This document provides information about networking for OpenShift Dedicated clusters. Next