{"id":48946,"date":"2025-04-02T01:33:52","date_gmt":"2025-04-02T01:33:52","guid":{"rendered":"https:\/\/www.devopsschool.com\/blog\/?p=48946"},"modified":"2026-02-21T07:27:22","modified_gmt":"2026-02-21T07:27:22","slug":"how-to-setup-kubernetes-aws-gateway-api-controller-on-amazon-eks","status":"publish","type":"post","link":"https:\/\/www.devopsschool.com\/blog\/how-to-setup-kubernetes-aws-gateway-api-controller-on-amazon-eks\/","title":{"rendered":"How to setup Kubernetes AWS Gateway API Controller on Amazon EKS?"},"content":{"rendered":"\n

Step – Setup Dedicated AWS VPC<\/h2>\n\n\n\n

Step – Deploy EKS <\/h2>\n\n\n\n

Step – Installing a Kubernetes Gateway API<\/h2>\n\n\n
$ kubectl apply -f https:\/\/github.com\/kubernetes-sigs\/gateway-api\/releases\/download\/v1.2.0\/standard-install.yaml<\/span>\n\n$ kubectl api-resources | grep gateway\n<\/code><\/span>Code language:<\/span> JavaScript<\/span> (<\/span>javascript<\/span>)<\/span><\/small><\/pre>\n\n\n
\"\"<\/figure>\n\n\n\n
Step – AWS Security group Change Requirement<\/h2>\n\n\n\n
Amazon VPC Lattice<\/strong> is a fully managed service<\/strong> by AWS that simplifies service-to-service communication across VPCs and accounts. The CIDR blocks<\/strong> used by VPC Lattice are assigned and managed by AWS<\/strong> and are available through managed prefix lists<\/strong> for both IPv4<\/strong> and IPv6<\/strong>.<\/p>\n\n\n\n
To allow communication between your workloads (e.g., Pods in EKS) and VPC Lattice services, you must configure security groups<\/strong>, network ACLs<\/strong>, or resource policies<\/strong> to allow traffic from these AWS-managed prefix lists<\/strong><\/p>\n\n\n\n
Prefix List<\/strong>: A prefix list<\/strong> is a set of CIDR blocks<\/strong> (e.g., 192.0.2.0\/24<\/code> for IPv4 or 2001:db8::\/32<\/code> for IPv6) that represent a group of IP addresses.<\/p>\n\n\n\n
AWS-managed prefix lists<\/strong> for services like VPC Lattice can be used in:<\/p>\n\n\n\n
    \n
  • \u2705 Security Groups<\/li>\n\n\n\n
  • \u2705 Route Tables<\/li>\n\n\n\n
  • \u2705 Network ACLs<\/li>\n\n\n\n
  • \u2705 Resource Policies<\/li>\n<\/ul>\n\n\n\n
    Security Groups Created by AWS for EKS<\/p>\n\n\n\n
      \n
    • Cluster Security Group (Control Plane to Worker Nodes)<\/li>\n\n\n\n
    • Node Security Group (Worker Nodes)<\/li>\n\n\n\n
    • Fargate Profile Security Group (if using AWS Fargate)<\/li>\n<\/ul>\n\n\n\n
      \"\"<\/figure>\n\n\n\n