All KIC Documentation

Configure Kong Gateway using Kubernetes CRDs with Kong Ingress Controller

The Kong Ingress Controller version support policy outlines the Kong Ingress Controller versioning scheme and version lifecycle, from release to sunset support.

Learn about the versions of Kong Ingress Controller compatible with specific versions of Kong Gateway, Kubernetes, Gateway API and Istio.

Run Kong Ingress Controller with Konnect or on-prem using Helm

Use the an HTTPRoute or Ingress to configure a Service and a Route.

Add rate limiting to an HTTPRoute or Ingress using the KongPlugin resource

Cache all GET and HEAD responses across all Services using Proxy Cache and the KongClusterPlugin resource

Add key authentication to a Kubernetes Service using the KongPlugin resource

Run Kong Ingress Controller with Konnect or on-prem using Helm

Learn how to apply a Kong Gateway enterprise license using the `KongLicense` CRD or Kubernetes secrets

How to run multiple Kong Ingress Controller instances with leader election

How to enable passive and active health checks for upstream services

Prevent Kong Ingress Controller lockups by falling back to the last known good configuration when invalid configuration is applied

Prevent Kong Ingress Controller lock-ups when bad configuration is accidentally introduced to your k8s cluster

Customize the image name used for Kong Ingress Controller and Kong Gateway

Route HTTP requests to services in your cluster using HTTPRoute or Ingress

Route HTTPS requests to services in your cluster using HTTPRoute or Ingress

Use GRPCRoute to route traffic to a service secured with TLS

Use GRPCRoute to route traffic to a plain text GRPC listener

Route TCP requests to services in your cluster based on the incoming port using TCPRoute or TCPIngress

Use TLSRoute to route TCP traffic secured by TLS

Route UDP requests to services in your cluster using UDPRoute or UDPIngress

Expose a service located outside the Kubernetes cluster

Redirect incoming HTTP requests to use HTTPS

Dynamically rewrite paths using regular expressions before sending requests upstream

Distribute traffic across multiple Kubernetes Services in a single HTTPRoute

Route traffic to a Service in a different namespace using ReferenceGrant

How does Kong Ingress Controller work? Which Kubernetes resources does it interact with?

Learn about support for Gateway API resources such as Gateway and GatewayClass in Kong Ingress Controller

Understand how Ingress and IngressClass work with Kong Gateway.

Which custom resources does Kong Ingress Controller provide? How are they used to configure Kong Gateway?

Which resources require an IngressClass / GatewayClass to be reconciled by Kong Ingress Controller?

Learn about the annotations Kong Ingress Controller uses and the Kubernetes resources you can annotate.

What is the Kong Ingress Controller admission webhook? How do I enable it? What does it validate?

Use one Kong Ingress Controller instance to configure multiple Kong Gateway instances. Gateway Discovery is Kong's recommended deployment topology for the Kong Ingress Controller.

Use Kong Ingress Controller to configure a Kong Gateway Control Plane that is attached to a PostgreSQL database.

Deploy Kong Ingress Controller and Kong Gateway as containers in the same Pod. This topology is deprecated.

Change the load balancing algorithm to consistent-hashing based on an incoming header

Split traffic across multiple Kong Gateway instances in a single Kubernetes cluster

Learn how to use KIC to sync resources to a specific Kong Gateway Workspace. Deploy multiple namespaces and use the --watch-namespace flag with a Workspace.

Learn how to pass the client IP through Gateway to the upstream service

Learn how to configure Kong Gateway to verify TLS certificates when connecting to upstream services.

Understand which metrics Kong Ingress Controller exposes in Prometheus format

Monitor Kong Gateway Prometheus metrics using Kong Ingress Controller and Grafana

Kong Ingress Controller emits Kubernetes events to help you observe what's happening in your cluster.

Learn about the different ways Kong Ingress Controller can fail.

Learn how to debug a broken Kong Gateway configuration generated by Kong Ingress Controller.

Gain insights into the KIC in Konnect synchronization process using traces.

How do I enable debug logs and capture network traffic to debug?

Learn how to customize Kong Ingress Controller's connection to the Kubernetes API Server.

Use the last known good configuration automatically for any subset of configuration that is invalid in your k8s cluster

Remove broken configuration from your Kong Gateway configuration automatically

Install custom plugins in Kong Gateway without using a custom image

Enable multiple authentication methods on a single Service

Apply the ACL plugin to provide access control for specific routes

Configure Rate Limiting using a `local` or `redis` policy

Configure the Kong Ingress Controller to verify client certificates using CA certificates and mtls-auth plugin for HTTPS requests.

Authenticate requests using the OpenID Connect protocol and Kong Gateway

Configure the DeGraphQL plugin for Kong Ingress Controller using KongCustomEntity.

See the generated CRD structure containing all possible resource fields and descriptions for each property.

Learn about the annotations Kong Ingress Controller uses and the Kubernetes resources you can annotate.

Learn how to customize Kong Ingress Controller's behavior using feature flags

Learn about the various settings and configurations of the controller can be tweaked using CLI flags.

Learn about the permissions required to install and run Kong Ingress Controller.

Customize the Host header that is sent to your upstream service.

Rewrite the request path before sending it to your upstream service.

Populate your KongPlugin configuration using Kubernetes Secrets

How to migrate from Ingress API to Gateway API

Learn how to remove the deprecated KongIngress resource from your deployment.

Add the konghq.com/credential label to your Secrets to improve performance and security.

How do I use a custom nginx.conf file with ConfigMap or Secret?

Reduce the number of Gateway Services generated by Kong Ingress Controller when using HTTPRoutes

Which custom Ingress annotations are replaced with Gateway API features?

What do I need to know when upgrading Kong Gateway on Kubernetes? DB-backed mode vs DB-less

Upgrade Kong Ingress Controller safely, taking in to account Gateway API version changes

How do I configure Custom Entities such as degraphql_routes using KIC?