docker-compose
.docker-compose.override.yml
file for the Catalog microservice:docker-compose.yml
and docker-compose.override.yml
are placed.http://localhost:5101/swagger
:docker-compose down
command..NETCoreApp 3.1
and hence it is not suitable for .NET Framework applications.Program.cs
and Startup.cs
.configuration.json
file that you must provide to the builder through the AddJsonFile()
method. That configuration.json
is where you specify all the API Gateway ReRoutes, meaning the external endpoints with specific ports and the correlated internal endpoints, usually using different ports.Host
is a service name that depends on the service name resolution you are using. When using docker-compose, the services names are provided by the Docker Host, which is using the service names provided in the docker-compose files. If using an orchestrator like Kubernetes or Service Fabric, that name should be resolved by the DNS or name resolution provided by each orchestrator.http://localhost:5202/api/v1/c/catalog/items/2/
served by the webshoppingapigw API Gateway, you get the same result from the internal Downstream URL http://catalog-api/api/v1/2
within the Docker host, as in the following browser.http://localhost:5101/api/v1/Catalog/items/1
in the following browser.authenticationProviderKey = 'IdentityApiKey'
, that will require authentication whenever that service has any requests without any auth token.AddJwtBearer()
at the ConfigureServices() of the Startup class, such as in the code below.http://localhost:5202/api/v1/b/basket/1
, then you'll get a 401 Unauthorized unless you provide a valid token. On the other hand, if a ReRoute URL is authenticated, Ocelot will invoke whatever downstream scheme is associated with it (the internal microservice URL)./
for the client SPA web application/webmvc
for the client MVC web application/webstatus
for the client web app showing the status/healthchecks/webshoppingapigw
for the web BFF and shopping business processes/webmarketingapigw
for the web BFF and marketing business processes/mobileshoppingapigw
for the mobile BFF and shopping business processes/mobilemarketingapigw
for the mobile BFF and marketing business processes/app/configuration
.k8s/ocelot/
folder. There's one file for each BFF/APIGateway.Operating system/platform | Versions |
---|---|
Windows Server | 2012 R2 2016 2019 |
Windows | 8, 10 |
SUSE Linux | Enterprise Server 12 (x86_64) |
Ubuntu | 16.04.3 LTS |
CentOS | 7.0 |
Mac OS | 10.14.1 |
Protocol | Versions | Notes |
---|---|---|
SMB | 2.X, 3.X | SMB 1 isn't supported. |
NFS (currently in preview) | 3.0, 4.1 | Mac OS is not supported with NFS v4.1. |
Storage account | Notes |
---|---|
Classic | Standard |
General Purpose | Standard; both V1 and V2 are supported. Both hot and cool tiers are supported. |
File format | Notes |
---|---|
Azure block blob | |
Azure page blob | |
Azure Files |
Browser | Versions | Additional requirements/notes |
---|---|---|
Google Chrome | Latest version | |
Microsoft Edge | Latest version | |
Internet Explorer | Latest version | If Enhanced Security features are enabled, you may not be able to access local web UI pages. Disable enhanced security, and restart your browser. |
FireFox | Latest version |
Port no. | In or out | Port scope | Required | Notes |
---|---|---|---|---|
TCP 80 (HTTP) | Out | WAN | No | Outbound port is used for internet access to retrieve updates. The outbound web proxy is user configurable. |
TCP 443 (HTTPS) | Out | WAN | Yes | Outbound port is used for accessing data in the cloud. The outbound web proxy is user configurable. |
UDP 123 (NTP) | Out | WAN | In some cases See notes | This port is required only if you're using an internet-based NTP server. |
UDP 53 (DNS) | Out | WAN | In some cases See notes | This port is required only if you're using an internet-based DNS server. We recommend using a local DNS server. |
TCP 5985 (WinRM) | Out/In | LAN | In some cases See notes | This port is required to connect to the device via remote PowerShell over HTTP. |
UDP 67 (DHCP) | Out | LAN | In some cases See notes | This port is required only if you're using a local DHCP server. |
TCP 80 (HTTP) | Out/In | LAN | Yes | This port is the inbound port for local UI on the device for local management. Accessing the local UI over HTTP will automatically redirect to HTTPS. |
TCP 443 (HTTPS) | Out/In | LAN | Yes | This port is the inbound port for local UI on the device for local management. |
TCP 445 (SMB) | In | LAN | In some cases See notes | This port is required only if you are connecting via SMB. |
TCP 2049 (NFS) | In | LAN | In some cases See notes | This port is required only if you are connecting via NFS. |
Port no. | In or out | Port scope | Required | Guidance |
---|---|---|---|---|
TCP 443 (HTTPS) | Out | WAN | Yes | Outbound open for IoT Edge provisioning. This configuration is required when using manual scripts or Azure IoT Device Provisioning Service (DPS). |
URL pattern | Component or functionality |
---|---|
https://*.databoxedge.azure.com/* https://*.servicebus.windows.net/* https://login.windows.net | Azure Stack Edge / Data Box Gateway service Azure Service Bus Authentication Service |
http://*.backup.windowsazure.com | Device activation |
http://crl.microsoft.com/pki/* http://www.microsoft.com/pki/* | Certificate revocation |
https://*.core.windows.net/* https://*.data.microsoft.com http://*.msftncsi.com | Azure storage accounts and monitoring |
http://windowsupdate.microsoft.com http://*.windowsupdate.microsoft.com https://*.windowsupdate.microsoft.com http://*.update.microsoft.com https://*.update.microsoft.com http://*.windowsupdate.com http://download.microsoft.com http://*.download.windowsupdate.com http://wustat.windows.com http://ntservicepack.microsoft.com http://go.microsoft.com http://dl.delivery.mp.microsoft.com https://dl.delivery.mp.microsoft.com http://*.ws.microsoft.com https://*.ws.microsoft.com http://*.mp.microsoft.com | Microsoft Update servers |
http://*.deploy.akamaitechnologies.com | Akamai CDN |
https://*.partners.extranet.microsoft.com/* | Support package |
http://*.data.microsoft.com | Telemetry service in Windows, see the update for customer experience and diagnostic telemetry |
URL pattern | Component or functionality |
---|---|
https://mcr.microsoft.com https://*.cdn.mscr.io | Microsoft container registry (required) |
https://*.azurecr.io | Personal and third-party container registries (optional) |
https://*.azure-devices.net | IoT Hub access (required) |
URL pattern | Component or functionality |
---|---|
https://*.databoxedge.azure.us/* https://*.servicebus.usgovcloudapi.net/* https://login.microsoftonline.us | Azure Stack Edge / Data Box Gateway service Azure Service Bus Authentication Service |
http://*.backup.windowsazure.us | Device activation |
http://crl.microsoft.com/pki/* http://www.microsoft.com/pki/* | Certificate revocation |
https://*.core.usgovcloudapi.net/* https://*.data.microsoft.com http://*.msftncsi.com | Azure storage accounts and monitoring |
http://windowsupdate.microsoft.com http://*.windowsupdate.microsoft.com https://*.windowsupdate.microsoft.com http://*.update.microsoft.com https://*.update.microsoft.com http://*.windowsupdate.com http://download.microsoft.com http://*.download.windowsupdate.com http://wustat.windows.com http://ntservicepack.microsoft.com http://*.ws.microsoft.com https://*.ws.microsoft.com http://*.mp.microsoft.com | Microsoft Update servers |
http://*.deploy.akamaitechnologies.com | Akamai CDN |
https://*.partners.extranet.microsoft.com/* | Support package |
http://*.data.microsoft.com | Telemetry service in Windows, see the update for customer experience and diagnostic telemetry |
URL pattern | Component or functionality |
---|---|
https://mcr.microsoft.com https://*.cdn.mscr.com | Microsoft container registry (required) |
https://*.azure-devices.us | IoT Hub access (required) |
https://*.azurecr.us | Personal and third-party container registries (optional) |
dkr
stats to get a live stream of container(s) resource usage statistics. The command supports CPU, memory usage, memory limit, and network IO metrics.dkr system df
to get information regarding the amount of disk space used.dkr image [prune]
to clean up unused images and free up space.dkr ps --size
to view the approximate size of a running container.