Creating a network load balancer with routing mode
Traffic that is destined for servers in an IBM Cloud VPC must be delivered to healthy VNF devices. Otherwise, traffic disruption occurs. You can use Network Load Balancers (NLB) with routing mode that is enabled to perform health checks, and to ensure that workloads travel only through healthy VNF devices. Network load balancers with routing mode support only VNF devices as back-end targets.
After you deploy the VNF, you must create an NLB and grant a service authorization for your IBM Cloud account to allow the NLB to modify custom routes if an NLB failover occurs.
To create an NLB and a service-to-service authentication policy for your NLB, follow these steps:
-
From your browser, log in to Identity and Access Management (IAM):
- Click Authorizations, then click Create.
- For the source service, select VPC Infrastructure Services. For scope access, select Resources based on selected attributes > Resource Type > Load Balancer for VPC.
- For the target service, select VPC Infrastructure Services. For scope access, select Resources based on selected attributes > Resource Type > Virtual Private Cloud.
This IAM authorization is required only one time per account.
-
To create an NLB with routing mode enabled, follow instructions in Creating a network load balancer for VPC.
To enable routing mode, select the Private type, then click the toggle button to enable routing mode.
You cannot modify this configuration after your NLB finishes provisioning.
Currently, the NLB routing mode feature is available only with a private IP and supports only TCP and UDP data traffic.