GatewayClass capabilities


This page lists the capabilities of the GatewayClass resources available on Google Kubernetes Engine (GKE) and their supported specifications.

Table legend

For the various tables in this document, the legend for the tables is as follows:

  • indicates that the field is supported.
  • - indicates that the field is not supported.
  • If GKE supports some values in the field, the table describes what values are supported.

GatewayClass capabilities

The following table lists the distinguishing features of the GatewayClass resources available on GKE:

Features gke-l7-rilb gke-l7-rilb-mc gke-l7-gxlb gke-l7-gxlb-mc
Underlying data plane Internal HTTP(S) load balancer Internal HTTP(S) load balancer External HTTP(S) load balancer External HTTP(S) load balancer
Load balancer backend scope Regional Regional Global Global
Gateway listener network VPC internal VPC internal Internet Internet
GKE Gateway controller Single-cluster Multi-cluster Single-cluster Multi-cluster
Cluster scope Single cluster Multi-cluster Single cluster Multi-cluster
GKE version support 1.20 and later 1.20 and later 1.20 and later 1.20 and later
Gateway API version networking.x-k8s.io/v1alpha1
Cluster type support GKE Standard and Autopilot
Shared VPC support
Launch stage Preview Preview Preview Preview

Gateway

The following table lists the fields of the Gateway API specification that are supported by GKE:

Gateway field GatewayClass
spec.addresses gke-l7-rilb gke-l7-rilb-mc gke-l7-gxlb gke-l7-gxlb-mc
type IPAddress, NamedAddress
value Static regional internal address Static global external address
spec.listeners gke-l7-rilb gke-l7-rilb-mc gke-l7-gxlb gke-l7-gxlb-mc
protocol HTTP, HTTPS
port Either 80 or 8080, 443 80, 8080, 443
hostname
routes
spec.listeners.tls gke-l7-rilb gke-l7-rilb-mc gke-l7-gxlb gke-l7-gxlb-mc
mode Terminate
certificateRef
spec.listeners.tls.options gke-l7-rilb gke-l7-rilb-mc gke-l7-gxlb gke-l7-gxlb-mc
networking.gke.io/pre-shared-certs Regional, self-managed SSL certificate resource reference Global SSL certificate resource reference (self- or Google-managed)
metadata.annotations field gke-l7-rilb gke-l7-rilb-mc gke-l7-gxlb gke-l7-gxlb-mc
networking.gke.io/FrontendConfig

HTTPRoute

The following table lists the values of the HTTPRoute API specification that are supported by GKE:

HTTPRoute field GatewayClass
gke-l7-rilb gke-l7-rilb-mc gke-l7-gxlb gke-l7-gxlb-mc
gateways
spec.hostnames
spec.rules.matches gke-l7-rilb gke-l7-rilb-mc gke-l7-gxlb gke-l7-gxlb-mc
path.type Exact, Prefix
path.value
header.type Exact
header.value
spec.filters gke-l7-rilb gke-l7-rilb-mc gke-l7-gxlb gke-l7-gxlb-mc
type RequestMirror, requestHeaderModifier
requestMirror
requestHeaderModifier.add
requestHeaderModifier.remove
requestHeaderModifier.set
spec.rules.forwardTo gke-l7-rilb gke-l7-rilb-mc gke-l7-gxlb gke-l7-gxlb-mc
serviceName
backendRef.kind ServiceImport ServiceImport
backendRef.group net.gke.io net.gke.io
backendRef.name
port
weight
filters

Service

The following table lists the metadata.annotations fields of Service objects that are relevant to the Gateway API:

metadata.annotations field gke-l7-rilb gke-l7-rilb-mc gke-l7-gxlb gke-l7-gxlb-mc
cloud.google.com/neg Not required when using Gateway. All Services are container-native by default.
cloud.google.com/backend-config Preview supported, but will be superseded by another resource prior to GA. Preview supported, but will be superseded by another resource prior to GA.
cloud.google.com/app-protocols