This topic describes how to create a load balancer for the VMware Tanzu Kubernetes Grid Integrated Edition API (TKGI API) using Amazon Web Services (AWS). Refer to the procedures in this topic to create a load balancer by using AWS.

To configure a load balancer for a different environment, see:

Overview

VMware recommends that you create a TKGI API load balancer when installing Tanzu Kubernetes Grid Integrated Edition on AWS.

To configure your TKGI API Load Balancer on AWS, complete the following:

Define Load Balancer

To define your load balancer using AWS, you must provide a name, select a VPC, specify listeners, and select subnets where you want to create the load balancer.

Perform the following steps:

  1. In a browser, navigate to the AWS Management Console.
  2. Under Compute, click EC2.
  3. In the EC2 Dashboard, under Load Balancing, click Load Balancers.
  4. Click Create Load Balancer.
  5. Under Classic Load Balancer, click Create.
  6. On the Define Load Balancer page, complete the Basic Configuration section as follows:
  7. Load Balancer name: Name the load balancer. VMware recommends naming your load balancer tkgi-api.
    1. Create LB inside: Select the VPC where you installed Ops Manager.
    2. Create an internal load balancer: Do not activate this check box. The Tanzu Kubernetes Grid Integrated Edition API load balancer must be internet-facing.
  8. Complete the Listeners Configuration section as follows:
    1. Configure the listener for UAA as follows:
      • Under Load Balancer Protocol, select TCP.
      • Under Load Balancer Port, enter 8443.
      • Under Instance Protocol, select TCP.
      • Under Instance Port, enter 8443.
    2. Configure the listener for Tanzu Kubernetes Grid Integrated Edition API Server as follows:
      • Under Load Balancer Protocol, select TCP.
      • Under Load Balancer Port, enter 9021.
      • Under Instance Protocol, select TCP.
      • Under Instance Port, enter 9021.
  9. Under Select Subnets, select the public subnets for your load balancer in the availability zones where you want to create the load balancer.

Create and Assign Security Groups

Perform the following steps to create and assign security groups:

  1. On the Security Groups page, click Create a new security group, and add the inbound and outbound rules.
    • Under the Inbound rules section, add the inbound rules:
    • First inbound rule:
      • Type: Custom TCP
      • Protocol: TCP
      • Port range: 8443
      • Source: Anywhere-IPv4
    • Second inbound rule:
      • Type: Custom TCP
      • Protocol: TCP
      • Port range: 9021
      • Source: Anywhere-IPv4
    • Under the Outbound rules section, add the outbound rule:
    • Type: All traffic
    • Protocol: All
    • Port range: All
    • Destination: Anywhere-IPv4

Configure Health Check

Perform the following steps to configure the health check:

  1. On the Health Check page:
    1. Select TCP in the Ping Protocol field.
    2. Enter 9021 in the Ping Port field.

Add EC2 Instances for the Load Balancer

Perform the following steps to add EC2 Instances for the Load Balancer:

  1. Open Ops Manager to the Installation Dashboard pane.
  2. Click the Tanzu Kubernetes Grid Integrated Edition tile.
  3. Open the Resource Config pane.
  4. Select TKGI API.
  5. Review Load Balancers.
  6. If Load Balancers does not include the load balancer to use for the TKGI API VM:
    1. Input the load balancer to use for TKGI API VM.
    2. Click Apply Changes.

(Optional) Add Tags

Perform the following steps to add tags to your resources to help organize and identify them:

  1. On the Create Load Balancer page in the AWS Console, enter the key-value pair to tag the load balancer.

    NOTE: The key-value pair is case-sensitive.

  2. Click Create load balancer.

Review and Create the Load Balancer

Perform the following steps to review your load balancer details and create your load balancer:

  1. On the Summary page, review your load balancer details and edit any as necessary.

  2. Click Create.

check-circle-line exclamation-circle-line close-line
Scroll to top icon