Cloud-native API Gateway supports two service source types: container services (including Container Service for Kubernetes (ACK) clusters, Alibaba Cloud Container Compute Service (ACS) clusters, and ACK Serverless clusters), and Microservices Engine (MSE) Nacos registries. This topic describes how to add and manage ACK clusters with deployed backend services or MSE Nacos instances registered with backend services as gateway service sources.
Prerequisites
An ACK managed cluster or MSE Nacos instance is created.
Configuration
If a service source that you configured becomes invalid, manually delete the service source. Otherwise, instability issues may occur. For example, synchronization of service information from other sources may be delayed.
You can add a Domain Name System (DNS) domain name or a fixed address as a service without the need to configure a service source. For more information, see Create a service.
If you add an ACK or ASK cluster as a service source for a Cloud-native API Gateway instance, the Cloud-native API Gateway instance monitors the services and endpoints of the ACK or ASK cluster to obtain the related information. If you configure HTTPS requests for a Cloud-native API Gateway instance based on Ingress resources in Kubernetes clusters, the Cloud-native API Gateway instance also needs to monitor cluster secrets to obtain information about HTTPS certificates.
Create a service source
Log on to the API Gateway console.
In the left-side navigation pane, click . In the top navigation bar, select a region.
On the Instance page, click the target instance ID.
In the left-side navigation pane, click Service. Then, click the Source tab.
Click Create Source. In the Create Source panel, configure the parameters and click OK.
Source type ACK
Parameter
Description
ACK/ACS/ACK Serverless Cluster
Select the cluster in which your backend service is deployed.
ImportantIf no ACK/ACS/ACK Serverless clusters exist in the current virtual private cloud (VPC), create an ACK managed cluster first, then select it.
To add service sources from other VPCs, create a gateway instance in the target VPC first, then select it.
Security Group Rules
Security groups are configured on node pools of ACK clusters. Typically, components outside a cluster must have all required service ports exposed in security groups to access intra-cluster services.
You can modify security groups for gateway instances to adjust access policies.
Source type MSE Nacos
Parameter
Description
Nacos Instance
Select an instance.
ImportantIf no MSE Nacos instances exist in the current VPC, create an instance first, then select it.
To add MSE Nacos instances from other VPCs, create a gateway instance in the target VPC first, then select it.
Only MSE Nacos instances with
MCPEnabled = truedisplayed in the list. You can modify this parameter on the Parameter Settings page for the MSE Nacos instances.
Return to the Source tab and check if the service source you added is displayed.
Delete a service source
Log on to the API Gateway console.
In the left-side navigation pane, click . In the top navigation bar, select a region.
On the Instance page, click the target instance ID.
In the left-side navigation pane, click Service. Then, click the Source tab.
Find the target source and click Delete in the Actions column.
In the Delete dialog box, click OK.