QUIC fixed server preferred address config (proto)
This extension has the qualified name envoy.quic.server_preferred_address.fixed
Note
This extension is functional but has not had substantial production burn time, use only with this caveat.
This extension is intended to be robust against untrusted downstream traffic. It assumes that the upstream is trusted.
Tip
This extension extends and can be used with the following extension category:
This extension must be configured with one of the following type URLs:
extensions.quic.server_preferred_address.v3.FixedServerPreferredAddressConfig
[extensions.quic.server_preferred_address.v3.FixedServerPreferredAddressConfig proto]
Configuration for FixedServerPreferredAddressConfig.
{
"ipv4_address": ...,
"ipv4_config": {...},
"ipv6_address": ...,
"ipv6_config": {...}
}
- ipv4_address
(string) String representation of IPv4 address, i.e. “127.0.0.2”. If not specified, none will be configured.
- ipv4_config
(extensions.quic.server_preferred_address.v3.FixedServerPreferredAddressConfig.AddressFamilyConfig) The IPv4 address to advertise to clients for Server Preferred Address. This field takes precedence over ipv4_address.
- ipv6_address
(string) String representation of IPv6 address, i.e. “::1”. If not specified, none will be configured.
- ipv6_config
(extensions.quic.server_preferred_address.v3.FixedServerPreferredAddressConfig.AddressFamilyConfig) The IPv6 address to advertise to clients for Server Preferred Address. This field takes precedence over ipv6_address.
extensions.quic.server_preferred_address.v3.FixedServerPreferredAddressConfig.AddressFamilyConfig
Addresses for server preferred address for a single address family (IPv4 or IPv6).
{
"address": {...},
"dnat_address": {...}
}
- address
(config.core.v3.SocketAddress) The server preferred address sent to clients.
Note
Envoy currently requires all packets for a QUIC connection to arrive on the same port. Therefore, unless a dnat_address is explicitly configured, the port specified here must be set to zero. In such cases, Envoy will automatically use the listener’s port.
- dnat_address
(config.core.v3.SocketAddress) If a DNAT exists between the client and Envoy, this is the address where Envoy will observe incoming server preferred address packets. If unspecified, Envoy assumes there is no DNAT, and packets will be sent directly to the address advertised to clients as the server preferred address.
Note
Envoy currently requires all packets for a QUIC connection to arrive on the same port. Consequently, the port for this address must be set to zero, with Envoy defaulting to the listener’s port instead.