docs: add gvisor service proxy mode arch

2025-12-24 11:51:13 +08:00 · 2025-01-24 10:52:18 +00:00
parent ebfb7168d2
commit e0e45cf84e
4 changed files with 24 additions and 320 deletions
--- a/docs/en/Architecture.md
+++ b/docs/en/Architecture.md
@@ -1,10 +1,15 @@
 ## Architecture
+
 ### Connect mode
-create a tunnel with port-forward, add route to virtual interface, like tun0, forward traffic though tunnel to remote traffic manager.  
+
+create a tunnel with port-forward, add route to virtual interface, like tun0, forward traffic though tunnel to remote
+traffic manager.  
 ![connect-mode](/docs/en/images/connect-mode.drawio.svg)

 ### Reverse mode
-base on connect mode, inject a container to controller, use iptables to block all inbound traffic and forward to local though tunnel.
+
+base on connect mode, inject a container to controller, use iptables to block all inbound traffic and forward to local
+though tunnel.

 ```text
 ┌──────────┐    ┌─────────┌──────────┐    ┌──────────┐
@@ -20,7 +25,10 @@ base on connect mode, inject a container to controller, use iptables to block al
 ```

 ### Mesh mode
-base on reverse mode, using envoy as proxy, if headers have special key-value pair, it will route to local machine, if not, use origin service.
+
+base on reverse mode, using envoy as proxy, if headers have special key-value pair, it will route to local machine, if
+not, use origin service.
+
 ```text
 ┌──────────┐    ┌─────────┌────────────┐     ┌──────────┐
 │ ServiceA ├───►│ sidecar ├─► ServiceB │─►┌─►│ ServiceC │
@@ -32,4 +40,6 @@ base on reverse mode, using envoy as proxy, if headers have special key-value pa
                 ┌───┘──────┐             │
                 │ ServiceB'├─────────────┘
                 └──────────┘
-```
+```
+
+![arch.svg](/docs/en/images/proxy-arch.svg)
--- a/docs/en/images/proxy-arch.svg
+++ b/docs/en/images/proxy-arch.svg