Back to Add-ons

MetalLB

MetalLB lets Edka allocate private VIPs from your cluster private subnet. Use it when you want internal-only LoadBalancer endpoints without exposing a public cloud load balancer.

Features available

  • MetalLB private VIP Gateway classes from Cluster > Gateway
  • Private LoadBalancer exposure for deployments and supported database flows
  • Private IP allocation from the cluster private network subnet
  • Wildcard domains and DNS-01 TLS on private Gateway classes
  • Works with the Cloudflare connector when remote WARP users need reachability to that subnet

How it fits in Edka

Install MetalLB from Cluster > Gateway or Cluster > Add-ons after you enable cluster private networking.

Then choose one of these patterns:

  • Create a Gateway class with exposure mode MetalLB private VIP when you want private Envoy Gateway routing and private wildcard domains.
  • Choose Private LoadBalancer in deployment networking when you only need a private service IP on the cluster subnet.

For the full routing model, see Private Networking with MetalLB and Cloudflare.


Deploy MetalLB
icon related to MetalLB

MetalLB

Networking

Allocate private VIPs on your cluster private subnet for Gateway API classes and private LoadBalancer exposure with MetalLB in Edka.