gorouter job from cf/242
The Router maintains a list of live routes for the applications running on each DEA. The Router load balances requests (based on their Host header) between each application instance registered for a specific route. It requires to be behind a load balancer that can terminate SSL connections.
The port used to emit dropsonde messages to the Metron agent.
Timeout in seconds for Router -> Endpoint roundtrip.
An ordered list of supported SSL cipher suites containing golang tls constants separated by colons The cipher suite will be chosen according to this order during SSL handshake
Address at which to serve debug info
Host to ping for confirmation of DNS resolution, only used when Routing API is enabled
Delay in seconds after drain begins before server stops listening. During this time the server will respond with 503 Service Unavailable to requests having header User-Agent: HTTP-Monitor/1.1. This accommodates requests in transit sent while health check responded ok.
Enables streaming of access log to syslog. Warning: this comes with a performance cost; due to higher I/O, max request rate is reduced.
Enables support for the popular PROXY protocol, allowing downstream load balancers that do not support HTTP to pass along client information.
Enable ssl termination on the router
A list of headers that log events will be annotated with
Log level for router
The frequency in minutes which logrotate will rotate VM logs
The number of files that logrotate will keep around on the VM
The size at which logrotate will decide to rotate the log file
Number of CPUs to utilize, the default (-1) will equal the number of available CPUs
Listening Port for Router.
On startup, the router will delay listening for requests by this duration to increase likelihood that it has a complete routing table before serving requests. The router also broadcasts the same duration as a recommended interval to registering clients via NATS.
Route Services are told where to send requests after processing using the X-CF-Forwarded-Url header. When this property is true, the scheme for this URL is https. When false, the scheme is http. As requests from Route Services to applications on CF transit load balancers and gorouter, disable this property for deployments that have TLS termination disabled.
Support for route services is disabled when no value is configured. A robust passphrase is recommended.
To rotate keys, add your new key here and deploy. Then swap this key with the value of route_services_secret and deploy again.
Expiry time of a route service signature in seconds
Set secure flag on http cookies
The public ssl cert for ssl termination
The private ssl key for ssl termination
Skip SSL client cert validation
Password for HTTP basic auth to the varz/status endpoint.
Port for the Router varz/status endpoint.
Username for HTTP basic auth to the varz/status endpoint.
Suspend pruning of routes when NATs is unavailable and maintain the current routing table. WARNING: This strategy favors availability over consistency and there is a possibility of routing to an incorrect endpoint in the case of port re-use. To be used with caution.”
If the X-Vcap-Trace request header is set and has this value, trace headers are added to the response.
When false, Routing API requires OAuth tokens for authentication.
When enabled, GoRouter will fetch HTTP routes from the Routing API in addition to routes obtained via NATS.
Port on which Routing API is running.
Port on which UAA is running.
Secure Port on which UAA is running.
Templates are rendered and placed onto corresponding
instances during the deployment process. This job's templates
will be placed into
Packages are compiled and placed onto corresponding
instances during the deployment process. Packages will be