From e006c3b64d3152cd2aacefac69b069ba22287411 Mon Sep 17 00:00:00 2001
From: Robert Bohne <robert.bohne@redhat.com>
Date: Fri, 1 May 2026 23:05:43 +0200
Subject: [PATCH 1/4] First draft

---
 .../tenant-network/.$detail.drawio.bkp        | 190 +++++++++++++
 .../tenant-network/.$overview.drawio.bkp      |  79 ++++++
 .../tenant-network/api-lb.conf                |  29 ++
 .../tenant-network/detail.drawio              | 187 +++++++++++++
 .../tenant-network/index.md                   | 221 +++++++++++++++
 .../ingress-controller-shard.yaml             |  17 ++
 .../ingress-shared-haproxy.conf               |  39 +++
 .../tenant-network/overview.drawio            | 264 ++++++++++++++++++
 .../tenant-network/vyos-router-2003.txt       |  27 ++
 mkdocs.yml                                    |   3 +
 10 files changed, 1056 insertions(+)
 create mode 100644 content/cluster-installation/hosted-control-plane/tenant-network/.$detail.drawio.bkp
 create mode 100644 content/cluster-installation/hosted-control-plane/tenant-network/.$overview.drawio.bkp
 create mode 100644 content/cluster-installation/hosted-control-plane/tenant-network/api-lb.conf
 create mode 100644 content/cluster-installation/hosted-control-plane/tenant-network/detail.drawio
 create mode 100644 content/cluster-installation/hosted-control-plane/tenant-network/index.md
 create mode 100644 content/cluster-installation/hosted-control-plane/tenant-network/ingress-controller-shard.yaml
 create mode 100644 content/cluster-installation/hosted-control-plane/tenant-network/ingress-shared-haproxy.conf
 create mode 100644 content/cluster-installation/hosted-control-plane/tenant-network/overview.drawio
 create mode 100644 content/cluster-installation/hosted-control-plane/tenant-network/vyos-router-2003.txt

diff --git a/content/cluster-installation/hosted-control-plane/tenant-network/.$detail.drawio.bkp b/content/cluster-installation/hosted-control-plane/tenant-network/.$detail.drawio.bkp
new file mode 100644
index 00000000..076cc4a1
--- /dev/null
+++ b/content/cluster-installation/hosted-control-plane/tenant-network/.$detail.drawio.bkp
@@ -0,0 +1,190 @@
+<mxfile host="Electron">
+  <diagram name="Page-1" id="YXbzoI76saGIsczbTkJC">
+    <mxGraphModel dx="4590" dy="1185" grid="1" gridSize="10" guides="1" tooltips="1" connect="1" arrows="1" fold="1" page="1" pageScale="1" pageWidth="1169" pageHeight="827" math="0" shadow="0">
+      <root>
+        <mxCell id="0" />
+        <mxCell id="1" parent="0" />
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-8" parent="1" style="rounded=0;whiteSpace=wrap;html=1;align=left;verticalAlign=top;fontStyle=1" value="&lt;b&gt;&lt;font style=&quot;font-size: 18px;&quot;&gt;OpenShift Hub Cluster&lt;/font&gt;&lt;/b&gt;" vertex="1">
+          <mxGeometry height="390" width="470" x="80" y="150" as="geometry" />
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-19" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#e1d5e7;strokeColor=#9673a6;align=center;verticalAlign=top;fontStyle=1" value="&lt;font face=&quot;Arial, sans-serif&quot;&gt;&lt;span style=&quot;white-space-collapse: preserve;&quot;&gt;hosted control plane namespace&lt;/span&gt;&lt;/font&gt;" vertex="1">
+          <mxGeometry height="220" width="430" x="110" y="180" as="geometry" />
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-3" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fillColor=#d5e8d4;strokeColor=#82b366;align=left;points=[[0,0,0,0,0],[0,0.25,0,0,0],[0,0.5,0,0,0],[0,0.75,0,0,0],[0,1,0,0,0],[0.04,0,0,0,0],[0.08,0,0,0,0],[0.12,0,0,0,0],[0.15,0,0,0,0],[0.19,0,0,0,0],[0.23,0,0,0,0],[0.25,0,0,0,0],[0.25,1,0,0,0],[0.27,0,0,0,0],[0.31,0,0,0,0],[0.35,0,0,0,0],[0.38,0,0,0,0],[0.42,0,0,0,0],[0.46,0,0,0,0],[0.5,0,0,0,0],[0.5,1,0,0,0],[0.54,0,0,0,0],[0.58,0,0,0,0],[0.62,0,0,0,0],[0.65,0,0,0,0],[0.69,0,0,0,0],[0.73,0,0,0,0],[0.75,0,0,0,0],[0.75,1,0,0,0],[0.77,0,0,0,0],[0.81,0,0,0,0],[0.85,0,0,0,0],[0.88,0,0,0,0],[0.92,0,0,0,0],[0.96,0,0,0,0],[1,0,0,0,0],[1,0.25,0,0,0],[1,0.5,0,0,0],[1,0.75,0,0,0],[1,1,0,0,0]];" value="&lt;b style=&quot;font-size: 16px;&quot;&gt;Managment Network Segment&lt;/b&gt;" vertex="1">
+          <mxGeometry height="20" width="1000" x="80" y="590" as="geometry" />
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-5" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fillColor=#e1d5e7;strokeColor=#9673a6;points=[[0,0,0,0,0],[0,0.25,0,0,0],[0,0.5,0,0,0],[0,0.75,0,0,0],[0,1,0,0,0],[0.02,1,0,0,0],[0.04,0,0,0,0],[0.04,1,0,0,0],[0.06,1,0,0,0],[0.08,0,0,0,0],[0.08,1,0,0,0],[0.1,1,0,0,0],[0.12,0,0,0,0],[0.12,1,0,0,0],[0.14,1,0,0,0],[0.15,0,0,0,0],[0.16,1,0,0,0],[0.18,1,0,0,0],[0.19,0,0,0,0],[0.2,1,0,0,0],[0.22,1,0,0,0],[0.23,0,0,0,0],[0.24,1,0,0,0],[0.25,0,0,0,0],[0.25,1,0,0,0],[0.27,0,0,0,0],[0.27,1,0,0,0],[0.29,1,0,0,0],[0.31,0,0,0,0],[0.31,1,0,0,0],[0.33,1,0,0,0],[0.35,0,0,0,0],[0.35,1,0,0,0],[0.37,1,0,0,0],[0.38,0,0,0,0],[0.39,1,0,0,0],[0.41,1,0,0,0],[0.42,0,0,0,0],[0.43,1,0,0,0],[0.45,1,0,0,0],[0.46,0,0,0,0],[0.47,1,0,0,0],[0.49,1,0,0,0],[0.5,0,0,0,0],[0.5,1,0,0,0],[0.51,1,0,0,0],[0.53,1,0,0,0],[0.54,0,0,0,0],[0.55,1,0,0,0],[0.57,1,0,0,0],[0.58,0,0,0,0],[0.59,1,0,0,0],[0.61,1,0,0,0],[0.62,0,0,0,0],[0.63,1,0,0,0],[0.65,0,0,0,0],[0.65,1,0,0,0],[0.67,1,0,0,0],[0.69,0,0,0,0],[0.69,1,0,0,0],[0.71,1,0,0,0],[0.73,0,0,0,0],[0.73,1,0,0,0],[0.75,0,0,0,0],[0.75,1,0,0,0],[0.76,1,0,0,0],[0.77,0,0,0,0],[0.78,1,0,0,0],[0.8,1,0,0,0],[0.81,0,0,0,0],[0.82,1,0,0,0],[0.84,1,0,0,0],[0.85,0,0,0,0],[0.86,1,0,0,0],[0.88,0,0,0,0],[0.88,1,0,0,0],[0.9,1,0,0,0],[0.92,0,0,0,0],[0.92,1,0,0,0],[0.94,1,0,0,0],[0.96,0,0,0,0],[0.96,1,0,0,0],[0.98,1,0,0,0],[1,0,0,0,0],[1,0.25,0,0,0],[1,0.5,0,0,0],[1,0.75,0,0,0],[1,1,0,0,0]];align=left;" value="&lt;b&gt;&lt;font style=&quot;font-size: 18px;&quot;&gt;Tenant A Network Segment&lt;/font&gt;&lt;/b&gt;" vertex="1">
+          <mxGeometry height="20" width="830" x="250" y="110" as="geometry" />
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-9" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#ffe6cc;strokeColor=#d79b00;" value="External &lt;br&gt;Load Balancer" vertex="1">
+          <mxGeometry height="35" width="120" x="690" y="240" as="geometry" />
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-10" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;" value="APIServer" vertex="1">
+          <mxGeometry height="30" width="120" x="410" y="240" as="geometry" />
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-15" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-10" style="endArrow=none;dashed=1;html=1;dashPattern=1 3;strokeWidth=2;rounded=0;entryX=0;entryY=0.5;entryDx=0;entryDy=0;exitX=1;exitY=0.5;exitDx=0;exitDy=0;" target="B_gBxwrZvkmkuxEVv0Sx-9" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="330" y="530" as="sourcePoint" />
+            <mxPoint x="380" y="480" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-16" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-9" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#d5e8d4;strokeColor=#82b366;exitX=0.25;exitY=1;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.62;entryY=0;entryDx=0;entryDy=0;entryPerimeter=0;" target="B_gBxwrZvkmkuxEVv0Sx-3" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="150" y="550" as="sourcePoint" />
+            <mxPoint x="690" y="660" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-17" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-9" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#e1d5e7;strokeColor=#9673a6;exitX=0.25;exitY=0;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.5;entryY=1;entryDx=0;entryDy=0;entryPerimeter=0;" target="B_gBxwrZvkmkuxEVv0Sx-5" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="570" y="620" as="sourcePoint" />
+            <mxPoint x="760" y="620" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-18" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;" value="&lt;span id=&quot;docs-internal-guid-aa7dbe45-7fff-f4de-7713-e002c688d2cc&quot;&gt;&lt;span style=&quot;font-family: Arial, sans-serif; background-color: transparent; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; font-variant-emoji: normal; vertical-align: baseline; white-space-collapse: preserve;&quot;&gt;Ignition&lt;/span&gt;&lt;/span&gt;" vertex="1">
+          <mxGeometry height="30" width="80" x="305" y="360" as="geometry" />
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-26" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-21" style="endArrow=none;dashed=1;html=1;dashPattern=1 3;strokeWidth=2;rounded=0;entryX=0;entryY=0.5;entryDx=0;entryDy=0;exitX=1;exitY=0.5;exitDx=0;exitDy=0;" target="B_gBxwrZvkmkuxEVv0Sx-23" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="560" y="230" as="sourcePoint" />
+            <mxPoint x="630" y="230" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-27" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-21" style="endArrow=none;dashed=1;html=1;dashPattern=1 3;strokeWidth=2;rounded=0;entryX=1;entryY=0.5;entryDx=0;entryDy=0;exitX=0.5;exitY=0;exitDx=0;exitDy=0;" target="B_gBxwrZvkmkuxEVv0Sx-18" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="510" y="490" as="sourcePoint" />
+            <mxPoint x="650" y="480" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-28" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-21" style="endArrow=none;dashed=1;html=1;dashPattern=1 3;strokeWidth=2;rounded=0;entryX=0;entryY=0.5;entryDx=0;entryDy=0;exitX=0.5;exitY=0;exitDx=0;exitDy=0;" target="B_gBxwrZvkmkuxEVv0Sx-13" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="690" y="540" as="sourcePoint" />
+            <mxPoint x="570" y="470" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-29" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-21" style="endArrow=none;dashed=1;html=1;dashPattern=1 3;strokeWidth=2;rounded=0;entryX=0;entryY=0.5;entryDx=0;entryDy=0;exitX=0.5;exitY=0;exitDx=0;exitDy=0;" target="B_gBxwrZvkmkuxEVv0Sx-12" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="390" y="460" as="sourcePoint" />
+            <mxPoint x="480" y="430" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-30" parent="1" style="rounded=0;whiteSpace=wrap;html=1;align=left;fontFamily=Helvetica;fontStyle=0;fillColor=#1ba1e2;fontColor=#ffffff;strokeColor=#006EAF;" value="DNS: api.tenant-a.coe.muc.redhat.com&lt;div&gt;IP:&amp;nbsp; &amp;nbsp; &amp;nbsp;192.168.203.10&lt;/div&gt;" vertex="1">
+          <mxGeometry height="40" width="220" x="780" y="205" as="geometry" />
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-32" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#0050ef;fontColor=#ffffff;strokeColor=#001DBC;" value="Worker VM 1" vertex="1">
+          <mxGeometry height="30" width="120" x="120" y="220" as="geometry" />
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-33" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#0050ef;fontColor=#ffffff;strokeColor=#001DBC;" value="Worker VM 2" vertex="1">
+          <mxGeometry height="30" width="120" x="255" y="220" as="geometry" />
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-34" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-33" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#e1d5e7;strokeColor=#9673a6;exitX=0.75;exitY=0;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.1;entryY=1;entryDx=0;entryDy=0;entryPerimeter=0;" target="B_gBxwrZvkmkuxEVv0Sx-5" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="730" y="540" as="sourcePoint" />
+            <mxPoint x="480" y="620" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-12" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;" value="OAuthServer" vertex="1">
+          <mxGeometry height="30" width="120" x="410" y="320" as="geometry" />
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-35" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-32" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#e1d5e7;strokeColor=#9673a6;startArrow=oval;startFill=1;endFill=1;entryX=0.04;entryY=1;entryDx=0;entryDy=0;entryPerimeter=0;" target="B_gBxwrZvkmkuxEVv0Sx-5" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="470" y="580" as="sourcePoint" />
+            <mxPoint x="140" y="600" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-13" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;" value="&lt;span id=&quot;docs-internal-guid-44e9e855-7fff-e21b-1846-7dce005654dc&quot;&gt;&lt;span style=&quot;font-family: Arial, sans-serif; background-color: transparent; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; font-variant-emoji: normal; vertical-align: baseline; white-space-collapse: preserve;&quot;&gt;Konnectivity&lt;/span&gt;&lt;/span&gt;" vertex="1">
+          <mxGeometry height="30" width="120" x="410" y="360" as="geometry" />
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-21" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;" value="&lt;span id=&quot;docs-internal-guid-aa7dbe45-7fff-f4de-7713-e002c688d2cc&quot;&gt;&lt;span style=&quot;font-family: Arial, sans-serif; background-color: transparent; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; font-variant-emoji: normal; vertical-align: baseline; white-space-collapse: preserve;&quot;&gt;Router/Ingress&lt;/span&gt;&lt;/span&gt;&lt;div&gt;&lt;span&gt;&lt;span style=&quot;font-family: Arial, sans-serif; background-color: transparent; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; font-variant-emoji: normal; vertical-align: baseline; white-space-collapse: preserve;&quot;&gt; Shard&lt;/span&gt;&lt;/span&gt;&lt;/div&gt;&lt;div&gt;&lt;span&gt;&lt;span style=&quot;font-family: Arial, sans-serif; background-color: transparent; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; font-variant-emoji: normal; vertical-align: baseline; white-space-collapse: preserve;&quot;&gt;for tentant a&lt;/span&gt;&lt;/span&gt;&lt;/div&gt;" vertex="1">
+          <mxGeometry height="60" width="120" x="385" y="450" as="geometry" />
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-36" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#ffe6cc;strokeColor=#d79b00;" value="External &lt;br&gt;Load Balancer" vertex="1">
+          <mxGeometry height="40" width="110" x="585" y="290" as="geometry" />
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-37" parent="1" style="rounded=0;whiteSpace=wrap;html=1;align=left;fontFamily=Helvetica;fontStyle=0;fillColor=#1ba1e2;fontColor=#ffffff;strokeColor=#006EAF;" value="DNS:&amp;nbsp;&lt;span style=&quot;background-color: transparent; color: light-dark(rgb(255, 255, 255), rgb(18, 18, 18));&quot;&gt;*.apps.tenant-a.coe.muc.redhat.com&lt;/span&gt;&lt;div&gt;&lt;div&gt;&lt;span style=&quot;background-color: transparent; color: light-dark(rgb(255, 255, 255), rgb(18, 18, 18));&quot;&gt;IP:&amp;nbsp; &amp;nbsp; &amp;nbsp;192.168.203.12&lt;/span&gt;&lt;/div&gt;&lt;/div&gt;" vertex="1">
+          <mxGeometry height="50" width="290" x="660" y="320" as="geometry" />
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-39" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-36" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#e1d5e7;strokeColor=#9673a6;exitX=0.5;exitY=0;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.39;entryY=1.1;entryDx=0;entryDy=0;entryPerimeter=0;" target="B_gBxwrZvkmkuxEVv0Sx-5" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="730" y="530" as="sourcePoint" />
+            <mxPoint x="845" y="610" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-40" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-42" style="endArrow=none;dashed=1;html=1;dashPattern=1 3;strokeWidth=2;rounded=0;entryX=0;entryY=0.5;entryDx=0;entryDy=0;exitX=1;exitY=0.5;exitDx=0;exitDy=0;" target="B_gBxwrZvkmkuxEVv0Sx-36" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="720" y="350" as="sourcePoint" />
+            <mxPoint x="534" y="410" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-41" parent="1" style="rounded=0;whiteSpace=wrap;html=1;align=left;verticalAlign=top;" value="OpenShift - Tenant A" vertex="1">
+          <mxGeometry height="75" width="170" x="155" y="245" as="geometry" />
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-42" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;" value="&lt;span id=&quot;docs-internal-guid-44e9e855-7fff-e21b-1846-7dce005654dc&quot;&gt;&lt;span style=&quot;font-family: Arial, sans-serif; background-color: transparent; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; font-variant-emoji: normal; vertical-align: baseline; white-space-collapse: preserve;&quot;&gt;Default Ingress&lt;/span&gt;&lt;/span&gt;" vertex="1">
+          <mxGeometry height="30" width="120" x="185" y="280" as="geometry" />
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-23" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#ffe6cc;strokeColor=#d79b00;" value="External &lt;br&gt;Load Balancer&lt;div&gt;(ingress-shared-lb)&lt;/div&gt;" vertex="1">
+          <mxGeometry height="50" width="120" x="570" y="389" as="geometry" />
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-24" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-23" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#d5e8d4;strokeColor=#82b366;exitX=0.25;exitY=1;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.5;entryY=0;entryDx=0;entryDy=0;entryPerimeter=0;" target="B_gBxwrZvkmkuxEVv0Sx-3" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="680" y="620" as="sourcePoint" />
+            <mxPoint x="620" y="660" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-25" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-23" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#e1d5e7;strokeColor=#9673a6;exitX=0.25;exitY=0;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.35;entryY=1;entryDx=0;entryDy=0;entryPerimeter=0;" target="B_gBxwrZvkmkuxEVv0Sx-5" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="750" y="600" as="sourcePoint" />
+            <mxPoint x="650" y="660" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-49" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#0050ef;fontColor=#ffffff;strokeColor=#001DBC;" value="Worker BareMetal" vertex="1">
+          <mxGeometry height="30" width="120" x="130" y="530" as="geometry" />
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-50" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#0050ef;fontColor=#ffffff;strokeColor=#001DBC;" value="Worker BareMetal" vertex="1">
+          <mxGeometry height="30" width="120" x="265" y="530" as="geometry" />
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-51" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#0050ef;fontColor=#ffffff;strokeColor=#001DBC;" value="Worker BareMetal" vertex="1">
+          <mxGeometry height="30" width="120" x="400" y="530" as="geometry" />
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-52" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-51" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#d5e8d4;strokeColor=#82b366;exitX=0.5;exitY=1;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.38;entryY=0;entryDx=0;entryDy=0;entryPerimeter=0;" target="B_gBxwrZvkmkuxEVv0Sx-3" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="610" y="590" as="sourcePoint" />
+            <mxPoint x="570" y="720" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-53" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-50" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#d5e8d4;strokeColor=#82b366;exitX=0.5;exitY=1;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.25;entryY=0;entryDx=0;entryDy=0;entryPerimeter=0;" target="B_gBxwrZvkmkuxEVv0Sx-3" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="470" y="640" as="sourcePoint" />
+            <mxPoint x="485" y="730" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-54" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-49" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#d5e8d4;strokeColor=#82b366;exitX=0.5;exitY=1;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.12;entryY=0;entryDx=0;entryDy=0;entryPerimeter=0;" target="B_gBxwrZvkmkuxEVv0Sx-3" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="270" y="620" as="sourcePoint" />
+            <mxPoint x="260" y="710" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-55" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#ffe6cc;strokeColor=#d79b00;" value="VyOS&lt;div&gt;router-2003&lt;/div&gt;" vertex="1">
+          <mxGeometry height="50" width="90" x="996" y="430" as="geometry" />
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-56" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-55" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#d5e8d4;strokeColor=#82b366;exitX=0.5;exitY=1;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.96;entryY=0;entryDx=0;entryDy=0;entryPerimeter=0;" target="B_gBxwrZvkmkuxEVv0Sx-3" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="720" y="540" as="sourcePoint" />
+            <mxPoint x="700" y="855" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-57" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-55" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#e1d5e7;strokeColor=#9673a6;exitX=0.5;exitY=0;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.96;entryY=1;entryDx=0;entryDy=0;entryPerimeter=0;" target="B_gBxwrZvkmkuxEVv0Sx-5" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="735" y="260" as="sourcePoint" />
+            <mxPoint x="680" y="150" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-31" parent="1" style="rounded=0;whiteSpace=wrap;html=1;align=left;fontFamily=Helvetica;fontStyle=0;fillColor=#1ba1e2;fontColor=#ffffff;strokeColor=#006EAF;" value="DNS:&amp;nbsp;&lt;div&gt;- konnectivity.tenant-a.coe.muc.redhat.com&lt;div&gt;- oauth.&lt;span style=&quot;background-color: transparent; color: light-dark(rgb(255, 255, 255), rgb(18, 18, 18));&quot;&gt;tenant-a.coe.muc.redhat.com&lt;/span&gt;&lt;/div&gt;&lt;div&gt;&lt;span style=&quot;background-color: transparent; color: light-dark(rgb(255, 255, 255), rgb(18, 18, 18));&quot;&gt;- ignition.tenant-a.coe.muc.redhat.com&lt;/span&gt;&lt;/div&gt;&lt;div&gt;IP:&amp;nbsp; &amp;nbsp; &amp;nbsp;192.168.203.111&lt;/div&gt;&lt;/div&gt;" vertex="1">
+          <mxGeometry height="70" width="290" x="650" y="420" as="geometry" />
+        </mxCell>
+        <mxCell id="9fFV5r1aD006acNwWojl-2" parent="1" style="text;whiteSpace=wrap;html=1;" value="&lt;b style=&quot;forced-color-adjust: none; color: rgb(0, 0, 0); font-family: Helvetica; font-size: 12px; font-style: normal; font-variant-ligatures: normal; font-variant-caps: normal; letter-spacing: normal; orphans: 2; text-align: left; text-indent: 0px; text-transform: none; widows: 2; word-spacing: 0px; -webkit-text-stroke-width: 0px; white-space: normal; background-color: rgb(236, 236, 236); text-decoration-thickness: initial; text-decoration-style: initial; text-decoration-color: initial;&quot;&gt;&lt;font style=&quot;forced-color-adjust: none; font-size: 18px;&quot;&gt;OpenShift Hub Cluster&lt;/font&gt;&lt;/b&gt;" vertex="1">
+          <mxGeometry height="50" width="230" x="10" y="10" as="geometry" />
+        </mxCell>
+      </root>
+    </mxGraphModel>
+  </diagram>
+</mxfile>
diff --git a/content/cluster-installation/hosted-control-plane/tenant-network/.$overview.drawio.bkp b/content/cluster-installation/hosted-control-plane/tenant-network/.$overview.drawio.bkp
new file mode 100644
index 00000000..3d1d9e74
--- /dev/null
+++ b/content/cluster-installation/hosted-control-plane/tenant-network/.$overview.drawio.bkp
@@ -0,0 +1,79 @@
+<mxfile host="Electron">
+  <diagram name="Page-1" id="YXbzoI76saGIsczbTkJC">
+    <mxGraphModel dx="1182" dy="1185" grid="1" gridSize="10" guides="1" tooltips="1" connect="1" arrows="1" fold="1" page="1" pageScale="1" pageWidth="1169" pageHeight="827" math="0" shadow="0">
+      <root>
+        <mxCell id="0" />
+        <mxCell id="1" parent="0" />
+        <mxCell id="B3RradtRmsC1N9M19CpR-1" parent="1" style="rounded=0;whiteSpace=wrap;html=1;align=left;verticalAlign=top;fontStyle=1" value="&lt;b&gt;&lt;font style=&quot;font-size: 18px;&quot;&gt;OpenShift Hub Cluster&lt;/font&gt;&lt;/b&gt;" vertex="1">
+          <mxGeometry height="280" width="470" x="30" y="80" as="geometry" />
+        </mxCell>
+        <mxCell id="B3RradtRmsC1N9M19CpR-2" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#e1d5e7;strokeColor=#9673a6;align=center;verticalAlign=bottom;fontStyle=1" value="&lt;font face=&quot;Arial, sans-serif&quot;&gt;&lt;span style=&quot;white-space-collapse: preserve;&quot;&gt;Hosted Control Plane of Tenant A&lt;/span&gt;&lt;/font&gt;" vertex="1">
+          <mxGeometry height="190" width="284" x="173" y="130" as="geometry" />
+        </mxCell>
+        <mxCell id="B3RradtRmsC1N9M19CpR-3" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fillColor=#d5e8d4;strokeColor=#82b366;align=left;points=[[0,0,0,0,0],[0,0.25,0,0,0],[0,0.5,0,0,0],[0,0.75,0,0,0],[0,1,0,0,0],[0.04,0,0,0,0],[0.08,0,0,0,0],[0.12,0,0,0,0],[0.15,0,0,0,0],[0.19,0,0,0,0],[0.23,0,0,0,0],[0.25,0,0,0,0],[0.25,1,0,0,0],[0.27,0,0,0,0],[0.31,0,0,0,0],[0.35,0,0,0,0],[0.38,0,0,0,0],[0.42,0,0,0,0],[0.46,0,0,0,0],[0.5,0,0,0,0],[0.5,1,0,0,0],[0.54,0,0,0,0],[0.58,0,0,0,0],[0.62,0,0,0,0],[0.65,0,0,0,0],[0.69,0,0,0,0],[0.73,0,0,0,0],[0.75,0,0,0,0],[0.75,1,0,0,0],[0.77,0,0,0,0],[0.81,0,0,0,0],[0.85,0,0,0,0],[0.88,0,0,0,0],[0.92,0,0,0,0],[0.96,0,0,0,0],[1,0,0,0,0],[1,0.25,0,0,0],[1,0.5,0,0,0],[1,0.75,0,0,0],[1,1,0,0,0]];" value="&lt;font style=&quot;font-size: 16px;&quot;&gt;&lt;b&gt;Managment Network Segment&lt;/b&gt;&lt;/font&gt;" vertex="1">
+          <mxGeometry height="20" width="487" x="30" y="403" as="geometry" />
+        </mxCell>
+        <mxCell id="B3RradtRmsC1N9M19CpR-4" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fillColor=#e1d5e7;strokeColor=#9673a6;points=[[0,0,0,0,0],[0,0.25,0,0,0],[0,0.5,0,0,0],[0,0.75,0,0,0],[0,1,0,0,0],[0.02,1,0,0,0],[0.04,0,0,0,0],[0.04,1,0,0,0],[0.06,1,0,0,0],[0.08,0,0,0,0],[0.08,1,0,0,0],[0.1,1,0,0,0],[0.12,0,0,0,0],[0.12,1,0,0,0],[0.14,1,0,0,0],[0.15,0,0,0,0],[0.16,1,0,0,0],[0.18,1,0,0,0],[0.19,0,0,0,0],[0.2,1,0,0,0],[0.22,1,0,0,0],[0.23,0,0,0,0],[0.24,1,0,0,0],[0.25,0,0,0,0],[0.25,1,0,0,0],[0.27,0,0,0,0],[0.27,1,0,0,0],[0.29,1,0,0,0],[0.31,0,0,0,0],[0.31,1,0,0,0],[0.33,1,0,0,0],[0.35,0,0,0,0],[0.35,1,0,0,0],[0.37,1,0,0,0],[0.38,0,0,0,0],[0.39,1,0,0,0],[0.41,1,0,0,0],[0.42,0,0,0,0],[0.43,1,0,0,0],[0.45,1,0,0,0],[0.46,0,0,0,0],[0.47,1,0,0,0],[0.49,1,0,0,0],[0.5,0,0,0,0],[0.5,1,0,0,0],[0.51,1,0,0,0],[0.53,1,0,0,0],[0.54,0,0,0,0],[0.55,1,0,0,0],[0.57,1,0,0,0],[0.58,0,0,0,0],[0.59,1,0,0,0],[0.61,1,0,0,0],[0.62,0,0,0,0],[0.63,1,0,0,0],[0.65,0,0,0,0],[0.65,1,0,0,0],[0.67,1,0,0,0],[0.69,0,0,0,0],[0.69,1,0,0,0],[0.71,1,0,0,0],[0.73,0,0,0,0],[0.73,1,0,0,0],[0.75,0,0,0,0],[0.75,1,0,0,0],[0.76,1,0,0,0],[0.77,0,0,0,0],[0.78,1,0,0,0],[0.8,1,0,0,0],[0.81,0,0,0,0],[0.82,1,0,0,0],[0.84,1,0,0,0],[0.85,0,0,0,0],[0.86,1,0,0,0],[0.88,0,0,0,0],[0.88,1,0,0,0],[0.9,1,0,0,0],[0.92,0,0,0,0],[0.92,1,0,0,0],[0.94,1,0,0,0],[0.96,0,0,0,0],[0.96,1,0,0,0],[0.98,1,0,0,0],[1,0,0,0,0],[1,0.25,0,0,0],[1,0.5,0,0,0],[1,0.75,0,0,0],[1,1,0,0,0]];align=left;" value="&lt;b&gt;&lt;font style=&quot;font-size: 18px;&quot;&gt;Tenant A Network Segment&lt;/font&gt;&lt;/b&gt;" vertex="1">
+          <mxGeometry height="20" width="477" x="30" y="20" as="geometry" />
+        </mxCell>
+        <mxCell id="B3RradtRmsC1N9M19CpR-16" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#0050ef;fontColor=#ffffff;strokeColor=#001DBC;" value="Worker VM 1" vertex="1">
+          <mxGeometry height="30" width="120" x="183" y="170" as="geometry" />
+        </mxCell>
+        <mxCell id="B3RradtRmsC1N9M19CpR-17" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#0050ef;fontColor=#ffffff;strokeColor=#001DBC;" value="Worker VM 2" vertex="1">
+          <mxGeometry height="30" width="120" x="318" y="170" as="geometry" />
+        </mxCell>
+        <mxCell id="B3RradtRmsC1N9M19CpR-18" edge="1" parent="1" source="B3RradtRmsC1N9M19CpR-17" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#e1d5e7;strokeColor=#9673a6;exitX=0.75;exitY=0;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.78;entryY=1;entryDx=0;entryDy=0;entryPerimeter=0;" target="B3RradtRmsC1N9M19CpR-4" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="680" y="470" as="sourcePoint" />
+            <mxPoint x="627" y="180" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="B3RradtRmsC1N9M19CpR-20" edge="1" parent="1" source="B3RradtRmsC1N9M19CpR-16" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#e1d5e7;strokeColor=#9673a6;startArrow=oval;startFill=1;endFill=1;entryX=0.53;entryY=1;entryDx=0;entryDy=0;entryPerimeter=0;exitX=0.75;exitY=0;exitDx=0;exitDy=0;" target="B3RradtRmsC1N9M19CpR-4" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="420" y="510" as="sourcePoint" />
+            <mxPoint x="90" y="530" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="B3RradtRmsC1N9M19CpR-32" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#0050ef;fontColor=#ffffff;strokeColor=#001DBC;" value="Worker BareMetal" vertex="1">
+          <mxGeometry height="30" width="120" x="80" y="343" as="geometry" />
+        </mxCell>
+        <mxCell id="B3RradtRmsC1N9M19CpR-33" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#0050ef;fontColor=#ffffff;strokeColor=#001DBC;" value="Worker BareMetal" vertex="1">
+          <mxGeometry height="30" width="120" x="215" y="343" as="geometry" />
+        </mxCell>
+        <mxCell id="B3RradtRmsC1N9M19CpR-34" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#0050ef;fontColor=#ffffff;strokeColor=#001DBC;" value="Worker BareMetal" vertex="1">
+          <mxGeometry height="30" width="120" x="350" y="343" as="geometry" />
+        </mxCell>
+        <mxCell id="B3RradtRmsC1N9M19CpR-35" edge="1" parent="1" source="B3RradtRmsC1N9M19CpR-34" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#d5e8d4;strokeColor=#82b366;exitX=0.5;exitY=1;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.77;entryY=0;entryDx=0;entryDy=0;entryPerimeter=0;" target="B3RradtRmsC1N9M19CpR-3" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="560" y="403" as="sourcePoint" />
+            <mxPoint x="520" y="533" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="B3RradtRmsC1N9M19CpR-36" edge="1" parent="1" source="B3RradtRmsC1N9M19CpR-33" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#d5e8d4;strokeColor=#82b366;exitX=0.5;exitY=1;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.5;entryY=0;entryDx=0;entryDy=0;entryPerimeter=0;" target="B3RradtRmsC1N9M19CpR-3" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="420" y="453" as="sourcePoint" />
+            <mxPoint x="435" y="543" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="B3RradtRmsC1N9M19CpR-37" edge="1" parent="1" source="B3RradtRmsC1N9M19CpR-32" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#d5e8d4;strokeColor=#82b366;exitX=0.5;exitY=1;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.23;entryY=0;entryDx=0;entryDy=0;entryPerimeter=0;" target="B3RradtRmsC1N9M19CpR-3" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="220" y="433" as="sourcePoint" />
+            <mxPoint x="210" y="523" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="B3RradtRmsC1N9M19CpR-48" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;" value="&lt;span id=&quot;docs-internal-guid-aa7dbe45-7fff-f4de-7713-e002c688d2cc&quot;&gt;&lt;span style=&quot;font-family: Arial, sans-serif; background-color: transparent; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; font-variant-emoji: normal; vertical-align: baseline; white-space-collapse: preserve;&quot;&gt;Ignition&lt;/span&gt;&lt;/span&gt;" vertex="1">
+          <mxGeometry height="30" width="120" x="318" y="210" as="geometry" />
+        </mxCell>
+        <mxCell id="B3RradtRmsC1N9M19CpR-49" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;" value="API Server" vertex="1">
+          <mxGeometry height="30" width="120" x="318" y="250" as="geometry" />
+        </mxCell>
+        <mxCell id="B3RradtRmsC1N9M19CpR-50" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;" value="OAuth" vertex="1">
+          <mxGeometry height="30" width="120" x="183" y="210" as="geometry" />
+        </mxCell>
+        <mxCell id="B3RradtRmsC1N9M19CpR-51" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;" value="&lt;span id=&quot;docs-internal-guid-44e9e855-7fff-e21b-1846-7dce005654dc&quot;&gt;&lt;span style=&quot;font-family: Arial, sans-serif; background-color: transparent; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; font-variant-emoji: normal; vertical-align: baseline; white-space-collapse: preserve;&quot;&gt;Konnectivity&lt;/span&gt;&lt;/span&gt;" vertex="1">
+          <mxGeometry height="30" width="120" x="183" y="250" as="geometry" />
+        </mxCell>
+      </root>
+    </mxGraphModel>
+  </diagram>
+</mxfile>
diff --git a/content/cluster-installation/hosted-control-plane/tenant-network/api-lb.conf b/content/cluster-installation/hosted-control-plane/tenant-network/api-lb.conf
new file mode 100644
index 00000000..b5a7e9a1
--- /dev/null
+++ b/content/cluster-installation/hosted-control-plane/tenant-network/api-lb.conf
@@ -0,0 +1,29 @@
+global
+  log         127.0.0.1 local2
+  pidfile     /var/run/haproxy.pid
+  maxconn     4000
+  daemon
+defaults
+  mode                    http
+  log                     global
+  option                  dontlognull
+  option http-server-close
+  option                  redispatch
+  retries                 3
+  timeout http-request    10s
+  timeout queue           1m
+  timeout connect         10s
+  timeout client          1m
+  timeout server          1m
+  timeout http-keep-alive 10s
+  timeout check           10s
+  maxconn                 3000
+
+listen api
+  bind *:6443
+  mode tcp
+  balance source
+  server ucs-blade-server-5 10.32.96.105:30918 check inter 1s
+  server ucs-blade-server-6 10.32.96.106:30918 check inter 1s        
+  server ucs-blade-server-7 10.32.96.107:30918 check inter 1s
+  server ucs-blade-server-8 10.32.96.108:30918 check inter 1s
diff --git a/content/cluster-installation/hosted-control-plane/tenant-network/detail.drawio b/content/cluster-installation/hosted-control-plane/tenant-network/detail.drawio
new file mode 100644
index 00000000..8057f4e0
--- /dev/null
+++ b/content/cluster-installation/hosted-control-plane/tenant-network/detail.drawio
@@ -0,0 +1,187 @@
+<mxfile host="Electron">
+  <diagram name="Page-1" id="YXbzoI76saGIsczbTkJC">
+    <mxGraphModel dx="1188" dy="1185" grid="1" gridSize="10" guides="1" tooltips="1" connect="1" arrows="1" fold="1" page="1" pageScale="1" pageWidth="1169" pageHeight="827" math="0" shadow="0">
+      <root>
+        <mxCell id="0" />
+        <mxCell id="1" parent="0" />
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-8" parent="1" style="rounded=0;whiteSpace=wrap;html=1;align=left;verticalAlign=top;fontStyle=1" value="&lt;b&gt;&lt;font style=&quot;font-size: 18px;&quot;&gt;OpenShift Hub Cluster&lt;/font&gt;&lt;/b&gt;" vertex="1">
+          <mxGeometry height="390" width="470" x="80" y="150" as="geometry" />
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-19" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#e1d5e7;strokeColor=#9673a6;align=center;verticalAlign=top;fontStyle=1" value="&lt;font face=&quot;Arial, sans-serif&quot;&gt;&lt;span style=&quot;white-space-collapse: preserve;&quot;&gt;hosted control plane namespace&lt;/span&gt;&lt;/font&gt;" vertex="1">
+          <mxGeometry height="220" width="430" x="110" y="180" as="geometry" />
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-3" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fillColor=#d5e8d4;strokeColor=#82b366;align=left;points=[[0,0,0,0,0],[0,0.25,0,0,0],[0,0.5,0,0,0],[0,0.75,0,0,0],[0,1,0,0,0],[0.04,0,0,0,0],[0.08,0,0,0,0],[0.12,0,0,0,0],[0.15,0,0,0,0],[0.19,0,0,0,0],[0.23,0,0,0,0],[0.25,0,0,0,0],[0.25,1,0,0,0],[0.27,0,0,0,0],[0.31,0,0,0,0],[0.35,0,0,0,0],[0.38,0,0,0,0],[0.42,0,0,0,0],[0.46,0,0,0,0],[0.5,0,0,0,0],[0.5,1,0,0,0],[0.54,0,0,0,0],[0.58,0,0,0,0],[0.62,0,0,0,0],[0.65,0,0,0,0],[0.69,0,0,0,0],[0.73,0,0,0,0],[0.75,0,0,0,0],[0.75,1,0,0,0],[0.77,0,0,0,0],[0.81,0,0,0,0],[0.85,0,0,0,0],[0.88,0,0,0,0],[0.92,0,0,0,0],[0.96,0,0,0,0],[1,0,0,0,0],[1,0.25,0,0,0],[1,0.5,0,0,0],[1,0.75,0,0,0],[1,1,0,0,0]];" value="&lt;b style=&quot;font-size: 16px;&quot;&gt;Managment Network Segment&lt;/b&gt;" vertex="1">
+          <mxGeometry height="20" width="1000" x="80" y="590" as="geometry" />
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-5" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fillColor=#e1d5e7;strokeColor=#9673a6;points=[[0,0,0,0,0],[0,0.25,0,0,0],[0,0.5,0,0,0],[0,0.75,0,0,0],[0,1,0,0,0],[0.02,1,0,0,0],[0.04,0,0,0,0],[0.04,1,0,0,0],[0.06,1,0,0,0],[0.08,0,0,0,0],[0.08,1,0,0,0],[0.1,1,0,0,0],[0.12,0,0,0,0],[0.12,1,0,0,0],[0.14,1,0,0,0],[0.15,0,0,0,0],[0.16,1,0,0,0],[0.18,1,0,0,0],[0.19,0,0,0,0],[0.2,1,0,0,0],[0.22,1,0,0,0],[0.23,0,0,0,0],[0.24,1,0,0,0],[0.25,0,0,0,0],[0.25,1,0,0,0],[0.27,0,0,0,0],[0.27,1,0,0,0],[0.29,1,0,0,0],[0.31,0,0,0,0],[0.31,1,0,0,0],[0.33,1,0,0,0],[0.35,0,0,0,0],[0.35,1,0,0,0],[0.37,1,0,0,0],[0.38,0,0,0,0],[0.39,1,0,0,0],[0.41,1,0,0,0],[0.42,0,0,0,0],[0.43,1,0,0,0],[0.45,1,0,0,0],[0.46,0,0,0,0],[0.47,1,0,0,0],[0.49,1,0,0,0],[0.5,0,0,0,0],[0.5,1,0,0,0],[0.51,1,0,0,0],[0.53,1,0,0,0],[0.54,0,0,0,0],[0.55,1,0,0,0],[0.57,1,0,0,0],[0.58,0,0,0,0],[0.59,1,0,0,0],[0.61,1,0,0,0],[0.62,0,0,0,0],[0.63,1,0,0,0],[0.65,0,0,0,0],[0.65,1,0,0,0],[0.67,1,0,0,0],[0.69,0,0,0,0],[0.69,1,0,0,0],[0.71,1,0,0,0],[0.73,0,0,0,0],[0.73,1,0,0,0],[0.75,0,0,0,0],[0.75,1,0,0,0],[0.76,1,0,0,0],[0.77,0,0,0,0],[0.78,1,0,0,0],[0.8,1,0,0,0],[0.81,0,0,0,0],[0.82,1,0,0,0],[0.84,1,0,0,0],[0.85,0,0,0,0],[0.86,1,0,0,0],[0.88,0,0,0,0],[0.88,1,0,0,0],[0.9,1,0,0,0],[0.92,0,0,0,0],[0.92,1,0,0,0],[0.94,1,0,0,0],[0.96,0,0,0,0],[0.96,1,0,0,0],[0.98,1,0,0,0],[1,0,0,0,0],[1,0.25,0,0,0],[1,0.5,0,0,0],[1,0.75,0,0,0],[1,1,0,0,0]];align=left;" value="&lt;b&gt;&lt;font style=&quot;font-size: 18px;&quot;&gt;Tenant A Network Segment&lt;/font&gt;&lt;/b&gt;" vertex="1">
+          <mxGeometry height="20" width="830" x="250" y="110" as="geometry" />
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-9" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#ffe6cc;strokeColor=#d79b00;" value="External &lt;br&gt;Load Balancer" vertex="1">
+          <mxGeometry height="35" width="120" x="690" y="240" as="geometry" />
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-10" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;" value="APIServer" vertex="1">
+          <mxGeometry height="30" width="120" x="410" y="240" as="geometry" />
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-15" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-10" style="endArrow=none;dashed=1;html=1;dashPattern=1 3;strokeWidth=2;rounded=0;entryX=0;entryY=0.5;entryDx=0;entryDy=0;exitX=1;exitY=0.5;exitDx=0;exitDy=0;" target="B_gBxwrZvkmkuxEVv0Sx-9" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="330" y="530" as="sourcePoint" />
+            <mxPoint x="380" y="480" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-16" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-9" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#d5e8d4;strokeColor=#82b366;exitX=0.25;exitY=1;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.62;entryY=0;entryDx=0;entryDy=0;entryPerimeter=0;" target="B_gBxwrZvkmkuxEVv0Sx-3" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="150" y="550" as="sourcePoint" />
+            <mxPoint x="690" y="660" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-17" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-9" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#e1d5e7;strokeColor=#9673a6;exitX=0.25;exitY=0;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.5;entryY=1;entryDx=0;entryDy=0;entryPerimeter=0;" target="B_gBxwrZvkmkuxEVv0Sx-5" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="570" y="620" as="sourcePoint" />
+            <mxPoint x="760" y="620" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-18" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;" value="&lt;span id=&quot;docs-internal-guid-aa7dbe45-7fff-f4de-7713-e002c688d2cc&quot;&gt;&lt;span style=&quot;font-family: Arial, sans-serif; background-color: transparent; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; font-variant-emoji: normal; vertical-align: baseline; white-space-collapse: preserve;&quot;&gt;Ignition&lt;/span&gt;&lt;/span&gt;" vertex="1">
+          <mxGeometry height="30" width="80" x="305" y="360" as="geometry" />
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-26" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-21" style="endArrow=none;dashed=1;html=1;dashPattern=1 3;strokeWidth=2;rounded=0;entryX=0;entryY=0.5;entryDx=0;entryDy=0;exitX=1;exitY=0.5;exitDx=0;exitDy=0;" target="B_gBxwrZvkmkuxEVv0Sx-23" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="560" y="230" as="sourcePoint" />
+            <mxPoint x="630" y="230" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-27" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-21" style="endArrow=none;dashed=1;html=1;dashPattern=1 3;strokeWidth=2;rounded=0;entryX=1;entryY=0.5;entryDx=0;entryDy=0;exitX=0.5;exitY=0;exitDx=0;exitDy=0;" target="B_gBxwrZvkmkuxEVv0Sx-18" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="510" y="490" as="sourcePoint" />
+            <mxPoint x="650" y="480" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-28" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-21" style="endArrow=none;dashed=1;html=1;dashPattern=1 3;strokeWidth=2;rounded=0;entryX=0;entryY=0.5;entryDx=0;entryDy=0;exitX=0.5;exitY=0;exitDx=0;exitDy=0;" target="B_gBxwrZvkmkuxEVv0Sx-13" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="690" y="540" as="sourcePoint" />
+            <mxPoint x="570" y="470" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-29" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-21" style="endArrow=none;dashed=1;html=1;dashPattern=1 3;strokeWidth=2;rounded=0;entryX=0;entryY=0.5;entryDx=0;entryDy=0;exitX=0.5;exitY=0;exitDx=0;exitDy=0;" target="B_gBxwrZvkmkuxEVv0Sx-12" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="390" y="460" as="sourcePoint" />
+            <mxPoint x="480" y="430" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-30" parent="1" style="rounded=0;whiteSpace=wrap;html=1;align=left;fontFamily=Helvetica;fontStyle=0;fillColor=#1ba1e2;fontColor=#ffffff;strokeColor=#006EAF;" value="DNS: api.tenant-a.coe.muc.redhat.com&lt;div&gt;IP:&amp;nbsp; &amp;nbsp; &amp;nbsp;192.168.203.10&lt;/div&gt;" vertex="1">
+          <mxGeometry height="40" width="220" x="780" y="205" as="geometry" />
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-32" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#0050ef;fontColor=#ffffff;strokeColor=#001DBC;" value="Worker VM 1" vertex="1">
+          <mxGeometry height="30" width="120" x="120" y="220" as="geometry" />
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-33" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#0050ef;fontColor=#ffffff;strokeColor=#001DBC;" value="Worker VM 2" vertex="1">
+          <mxGeometry height="30" width="120" x="255" y="220" as="geometry" />
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-34" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-33" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#e1d5e7;strokeColor=#9673a6;exitX=0.75;exitY=0;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.1;entryY=1;entryDx=0;entryDy=0;entryPerimeter=0;" target="B_gBxwrZvkmkuxEVv0Sx-5" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="730" y="540" as="sourcePoint" />
+            <mxPoint x="480" y="620" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-12" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;" value="OAuthServer" vertex="1">
+          <mxGeometry height="30" width="120" x="410" y="320" as="geometry" />
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-35" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-32" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#e1d5e7;strokeColor=#9673a6;startArrow=oval;startFill=1;endFill=1;entryX=0.04;entryY=1;entryDx=0;entryDy=0;entryPerimeter=0;" target="B_gBxwrZvkmkuxEVv0Sx-5" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="470" y="580" as="sourcePoint" />
+            <mxPoint x="140" y="600" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-13" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;" value="&lt;span id=&quot;docs-internal-guid-44e9e855-7fff-e21b-1846-7dce005654dc&quot;&gt;&lt;span style=&quot;font-family: Arial, sans-serif; background-color: transparent; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; font-variant-emoji: normal; vertical-align: baseline; white-space-collapse: preserve;&quot;&gt;Konnectivity&lt;/span&gt;&lt;/span&gt;" vertex="1">
+          <mxGeometry height="30" width="120" x="410" y="360" as="geometry" />
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-21" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;" value="&lt;span id=&quot;docs-internal-guid-aa7dbe45-7fff-f4de-7713-e002c688d2cc&quot;&gt;&lt;span style=&quot;font-family: Arial, sans-serif; background-color: transparent; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; font-variant-emoji: normal; vertical-align: baseline; white-space-collapse: preserve;&quot;&gt;Router/Ingress&lt;/span&gt;&lt;/span&gt;&lt;div&gt;&lt;span&gt;&lt;span style=&quot;font-family: Arial, sans-serif; background-color: transparent; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; font-variant-emoji: normal; vertical-align: baseline; white-space-collapse: preserve;&quot;&gt; Shard&lt;/span&gt;&lt;/span&gt;&lt;/div&gt;&lt;div&gt;&lt;span&gt;&lt;span style=&quot;font-family: Arial, sans-serif; background-color: transparent; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; font-variant-emoji: normal; vertical-align: baseline; white-space-collapse: preserve;&quot;&gt;for tentant a&lt;/span&gt;&lt;/span&gt;&lt;/div&gt;" vertex="1">
+          <mxGeometry height="60" width="120" x="385" y="450" as="geometry" />
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-36" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#ffe6cc;strokeColor=#d79b00;" value="External &lt;br&gt;Load Balancer" vertex="1">
+          <mxGeometry height="40" width="110" x="585" y="290" as="geometry" />
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-37" parent="1" style="rounded=0;whiteSpace=wrap;html=1;align=left;fontFamily=Helvetica;fontStyle=0;fillColor=#1ba1e2;fontColor=#ffffff;strokeColor=#006EAF;" value="DNS:&amp;nbsp;&lt;span style=&quot;background-color: transparent; color: light-dark(rgb(255, 255, 255), rgb(18, 18, 18));&quot;&gt;*.apps.tenant-a.coe.muc.redhat.com&lt;/span&gt;&lt;div&gt;&lt;div&gt;&lt;span style=&quot;background-color: transparent; color: light-dark(rgb(255, 255, 255), rgb(18, 18, 18));&quot;&gt;IP:&amp;nbsp; &amp;nbsp; &amp;nbsp;192.168.203.12&lt;/span&gt;&lt;/div&gt;&lt;/div&gt;" vertex="1">
+          <mxGeometry height="50" width="290" x="660" y="320" as="geometry" />
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-39" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-36" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#e1d5e7;strokeColor=#9673a6;exitX=0.5;exitY=0;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.39;entryY=1.1;entryDx=0;entryDy=0;entryPerimeter=0;" target="B_gBxwrZvkmkuxEVv0Sx-5" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="730" y="530" as="sourcePoint" />
+            <mxPoint x="845" y="610" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-40" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-42" style="endArrow=none;dashed=1;html=1;dashPattern=1 3;strokeWidth=2;rounded=0;entryX=0;entryY=0.5;entryDx=0;entryDy=0;exitX=1;exitY=0.5;exitDx=0;exitDy=0;" target="B_gBxwrZvkmkuxEVv0Sx-36" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="720" y="350" as="sourcePoint" />
+            <mxPoint x="534" y="410" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-41" parent="1" style="rounded=0;whiteSpace=wrap;html=1;align=left;verticalAlign=top;" value="OpenShift - Tenant A" vertex="1">
+          <mxGeometry height="75" width="170" x="155" y="245" as="geometry" />
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-42" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;" value="&lt;span id=&quot;docs-internal-guid-44e9e855-7fff-e21b-1846-7dce005654dc&quot;&gt;&lt;span style=&quot;font-family: Arial, sans-serif; background-color: transparent; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; font-variant-emoji: normal; vertical-align: baseline; white-space-collapse: preserve;&quot;&gt;Default Ingress&lt;/span&gt;&lt;/span&gt;" vertex="1">
+          <mxGeometry height="30" width="120" x="185" y="280" as="geometry" />
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-23" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#ffe6cc;strokeColor=#d79b00;" value="External &lt;br&gt;Load Balancer&lt;div&gt;(ingress-shared-lb)&lt;/div&gt;" vertex="1">
+          <mxGeometry height="50" width="120" x="570" y="389" as="geometry" />
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-24" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-23" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#d5e8d4;strokeColor=#82b366;exitX=0.25;exitY=1;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.5;entryY=0;entryDx=0;entryDy=0;entryPerimeter=0;" target="B_gBxwrZvkmkuxEVv0Sx-3" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="680" y="620" as="sourcePoint" />
+            <mxPoint x="620" y="660" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-25" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-23" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#e1d5e7;strokeColor=#9673a6;exitX=0.25;exitY=0;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.35;entryY=1;entryDx=0;entryDy=0;entryPerimeter=0;" target="B_gBxwrZvkmkuxEVv0Sx-5" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="750" y="600" as="sourcePoint" />
+            <mxPoint x="650" y="660" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-49" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#0050ef;fontColor=#ffffff;strokeColor=#001DBC;" value="Worker BareMetal" vertex="1">
+          <mxGeometry height="30" width="120" x="130" y="530" as="geometry" />
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-50" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#0050ef;fontColor=#ffffff;strokeColor=#001DBC;" value="Worker BareMetal" vertex="1">
+          <mxGeometry height="30" width="120" x="265" y="530" as="geometry" />
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-51" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#0050ef;fontColor=#ffffff;strokeColor=#001DBC;" value="Worker BareMetal" vertex="1">
+          <mxGeometry height="30" width="120" x="400" y="530" as="geometry" />
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-52" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-51" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#d5e8d4;strokeColor=#82b366;exitX=0.5;exitY=1;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.38;entryY=0;entryDx=0;entryDy=0;entryPerimeter=0;" target="B_gBxwrZvkmkuxEVv0Sx-3" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="610" y="590" as="sourcePoint" />
+            <mxPoint x="570" y="720" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-53" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-50" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#d5e8d4;strokeColor=#82b366;exitX=0.5;exitY=1;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.25;entryY=0;entryDx=0;entryDy=0;entryPerimeter=0;" target="B_gBxwrZvkmkuxEVv0Sx-3" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="470" y="640" as="sourcePoint" />
+            <mxPoint x="485" y="730" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-54" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-49" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#d5e8d4;strokeColor=#82b366;exitX=0.5;exitY=1;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.12;entryY=0;entryDx=0;entryDy=0;entryPerimeter=0;" target="B_gBxwrZvkmkuxEVv0Sx-3" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="270" y="620" as="sourcePoint" />
+            <mxPoint x="260" y="710" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-55" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#ffe6cc;strokeColor=#d79b00;" value="VyOS&lt;div&gt;router-2003&lt;/div&gt;" vertex="1">
+          <mxGeometry height="50" width="90" x="996" y="430" as="geometry" />
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-56" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-55" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#d5e8d4;strokeColor=#82b366;exitX=0.5;exitY=1;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.96;entryY=0;entryDx=0;entryDy=0;entryPerimeter=0;" target="B_gBxwrZvkmkuxEVv0Sx-3" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="720" y="540" as="sourcePoint" />
+            <mxPoint x="700" y="855" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-57" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-55" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#e1d5e7;strokeColor=#9673a6;exitX=0.5;exitY=0;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.96;entryY=1;entryDx=0;entryDy=0;entryPerimeter=0;" target="B_gBxwrZvkmkuxEVv0Sx-5" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="735" y="260" as="sourcePoint" />
+            <mxPoint x="680" y="150" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-31" parent="1" style="rounded=0;whiteSpace=wrap;html=1;align=left;fontFamily=Helvetica;fontStyle=0;fillColor=#1ba1e2;fontColor=#ffffff;strokeColor=#006EAF;" value="DNS:&amp;nbsp;&lt;div&gt;- konnectivity.tenant-a.coe.muc.redhat.com&lt;div&gt;- oauth.&lt;span style=&quot;background-color: transparent; color: light-dark(rgb(255, 255, 255), rgb(18, 18, 18));&quot;&gt;tenant-a.coe.muc.redhat.com&lt;/span&gt;&lt;/div&gt;&lt;div&gt;&lt;span style=&quot;background-color: transparent; color: light-dark(rgb(255, 255, 255), rgb(18, 18, 18));&quot;&gt;- ignition.tenant-a.coe.muc.redhat.com&lt;/span&gt;&lt;/div&gt;&lt;div&gt;IP:&amp;nbsp; &amp;nbsp; &amp;nbsp;192.168.203.111&lt;/div&gt;&lt;/div&gt;" vertex="1">
+          <mxGeometry height="70" width="290" x="650" y="420" as="geometry" />
+        </mxCell>
+      </root>
+    </mxGraphModel>
+  </diagram>
+</mxfile>
diff --git a/content/cluster-installation/hosted-control-plane/tenant-network/index.md b/content/cluster-installation/hosted-control-plane/tenant-network/index.md
new file mode 100644
index 00000000..a46cb89e
--- /dev/null
+++ b/content/cluster-installation/hosted-control-plane/tenant-network/index.md
@@ -0,0 +1,221 @@
+---
+title: Hosted Control Plane and tenant networking
+linktitle: Hosted Control Plane and tenant networking
+description: Hosted Control Plane and tenant networking
+tags: ['hcp','v4.21']
+---
+# Hosted Control Plane and tenant networking
+
+Official documentation: Net yet available
+
+Tested with:
+
+|Component|Version|
+|---|---|
+|OpenShift|v4.21.9|
+|OpenShift Virt|v4.21.0|
+
+## Overview
+
+Challenge: running an hosted cluster with in different tenant network segment/vlan without widely open access from tenant segment to managment segment.
+
+Addtional requirement, the hub cluster should not have any address or network connection into the tenant network segment. It's only allowed to place virtual machines into the network segment. 
+
+![](overview.drawio){ page="Page-1" }
+
+The worker nodes of the hosted cluster are quite easy to solve, just connected them into the tenant network segment (import, DHCP is required).
+
+The hosted control plane compontents to expose into tenant network segment is more challenging. Following components have to concider:
+
+* API Server
+* OAuth
+* Konnectivity
+* Ignition 
+
+Here an list of possible exposing options for these components:
+
+|Component/Service|Exposing strategy (`servicePublishingStrategy`)|Kubernetes Service type `LoadBalancer`|Ingress/Route|
+|---|---|---|---|
+|API Server|<li>LoadBalancer (Recommended, K8s Service Type Load Balancer)</li><li>NodePort* (not for production)</li>|✅|❌|
+|OAuth|<li>Route/Ingress (default)</li><li>NodePort* (not for production)</li>|❌|✅|
+|Konnectivity|<li>Route/Ingress (default)</li><li>LoadBalancer (K8s Service Type Load Balancer)</li><li>NodePort* (not for production)</li>|✅|✅|
+|Ignition|<li>Route/Ingress (default)</li><li>NodePort* (not for production)</li>|✅|❌|
+
+For our proof of concept we want to try following, exposing the components via:
+
+* API Server: LoadBalancer
+* OAuth: Router/Ingress: via a dedicted router shard. 
+* Konnectivity: via a dedicted router shard. 
+* Ignition: via a dedicted router shard. 
+
+## Exposing compontents via router/ingress shard
+
+The idea with the dedicated router/ingress shared is to expose the router/ingress shard into the tenant network segment and only for the hosted cluster components. 
+
+In front of the router/ingress shared is an external load balancer (for example, f5 bigip, netscaler,..) with access into the managment network segment and expose the router shared into the tenant network segment.
+
+
+
+
+## Proof of concept envrioment overview
+
+![](overview.drawio){ page="Page-2" }
+
+### Router between Mgmt and Tenant-A
+
+[VyOS Router](https://vyos.io/) router & firewall. Do not allow Traffic between Mgmt and Tenant-A network except DNS and gateway.
+
+??? example "VyOS config commands"
+
+    ```shell
+    --8<-- "content/cluster-installation/hosted-control-plane/tenant-network/vyos-router-2003.txt"
+    ```
+
+### Ingress Sharding
+
+* [2.3.4. Ingress sharding in OpenShift Container Platform](https://docs.redhat.com/en/documentation/openshift_container_platform/4.21/html/ingress_and_load_balancing/configuring-ingress-cluster-traffic#nw-ingress-sharding-concept_configuring-ingress-cluster-traffic-ingress-controller)
+* [3.1.3.8.1. Example load balancer configuration for user-provisioned clusters](https://docs.redhat.com/en/documentation/openshift_container_platform/4.21/html/installing_on_vmware_vsphere/user-provisioned-infrastructure)
+
+
+???+ example "Ingress Controller"
+
+    ```yaml
+    --8<-- "content/cluster-installation/hosted-control-plane/tenant-network/ingress-controller-shard.yaml"
+    ```
+
+```shell
+% oc get svc -n openshift-ingress router-nodeport-tenant-a
+NAME                       TYPE       CLUSTER-IP       EXTERNAL-IP   PORT(S)                                     AGE
+router-nodeport-tenant-a   NodePort   172.30.141.209   <none>        80:32460/TCP,443:32488/TCP,1936:32095/TCP   106s
+```
+
+Ingress sharding load balancer is an RHEL 9 system with haproxy.
+
+* Install HAProxy `dnf install haproxy`
+* Configure selinux `setsebool -P haproxy_connect_any 1`
+* Apply Example haproxy.conf (don't forget to update ports)
+* Enabel and start haproxy `systemctl enable --now haproxy`
+
+??? example "HAProxy config"
+
+    ```shell
+    --8<-- "content/cluster-installation/hosted-control-plane/tenant-network/ingress-shared-haproxy.conf"
+    ```
+
+Add DNS Records 
+
+```bind
+konnectivity.tenant-a.coe.muc.redhat.com.       IN A 192.168.203.111
+oauth.tenant-a.coe.muc.redhat.com.              IN A 192.168.203.111
+ignition.tenant-a.coe.muc.redhat.com.           IN A 192.168.203.111
+```
+
+
+
+
+
+
+
+
+
+apiVersion: project.openshift.io/v1
+kind: Project
+metadata:
+  name: 'clusters'
+---
+apiVersion: hypershift.openshift.io/v1beta1
+kind: HostedCluster
+metadata:
+  name: 'tenant-a'
+  namespace: 'clusters'
+  labels:
+    "cluster.open-cluster-management.io/clusterset": 'default'
+spec:
+  configuration:
+    ingress:
+      appsDomain: apps.tenant-a.coe.muc.redhat.com
+      domain: ''
+      loadBalancer:
+        platform:
+          type: ''
+  channel: fast-4.21
+  etcd:
+    managed:
+      storage:
+        persistentVolume:
+          size: 8Gi
+        type: PersistentVolume
+    managementType: Managed
+  release:
+    image: quay.io/openshift-release-dev/ocp-release:4.21.11-multi
+  pullSecret:
+    name: pullsecret-cluster-tenant-a
+  sshKey:
+    name: sshkey-cluster-tenant-a
+  networking:
+    clusterNetwork:
+      - cidr: 10.132.0.0/14
+    serviceNetwork:
+      - cidr: 172.31.0.0/16
+    networkType: OVNKubernetes
+  controllerAvailabilityPolicy: SingleReplica
+  infrastructureAvailabilityPolicy: SingleReplica
+  platform:
+    type: KubeVirt
+    kubevirt:
+      baseDomainPassthrough: false
+  infraID: 'tenant-a'
+  services:
+    - service: APIServer
+      servicePublishingStrategy:
+        type: LoadBalancer
+        loadBalancer:
+          hostname: api.tenant-a.coe.muc.redhat.com
+    - service: OAuthServer
+      servicePublishingStrategy:
+        type: Route
+        route:
+          hostname: oauth.tenant-a.coe.muc.redhat.com
+    - service: OIDC
+      servicePublishingStrategy:
+        type: Route
+    - service: Konnectivity
+      servicePublishingStrategy:
+        type: Route
+        route:
+          hostname: konnectivity.tenant-a.coe.muc.redhat.com
+    - service: Ignition
+      servicePublishingStrategy:
+        type: Route
+        route:
+          hostname: ignition.tenant-a.coe.muc.redhat.com
+
+---
+apiVersion: hypershift.openshift.io/v1beta1
+kind: NodePool
+metadata:
+  name: 'tenant-a'
+  namespace: 'clusters'
+spec:
+  arch: amd64
+  clusterName: 'tenant-a'
+  replicas: 2
+  management:
+    autoRepair: false
+    upgradeType: Replace
+  platform:
+    type: KubeVirt
+    kubevirt:
+      compute:
+        cores: 2
+        memory: 8Gi
+      rootVolume:
+        type: Persistent
+        persistent:
+          size: 32Gi
+      additionalNetworks:
+      - name: default/cudn-localnet1-2003
+      attachDefaultNetwork: false
+  release:
+    image: quay.io/openshift-release-dev/ocp-release:4.21.11-multi
+
diff --git a/content/cluster-installation/hosted-control-plane/tenant-network/ingress-controller-shard.yaml b/content/cluster-installation/hosted-control-plane/tenant-network/ingress-controller-shard.yaml
new file mode 100644
index 00000000..fcd9b0a1
--- /dev/null
+++ b/content/cluster-installation/hosted-control-plane/tenant-network/ingress-controller-shard.yaml
@@ -0,0 +1,17 @@
+apiVersion: operator.openshift.io/v1
+kind: IngressController
+metadata:
+  name: tenant-a
+  namespace: openshift-ingress-operator
+spec:
+  domain: tenant-a.coe.muc.redhat.com
+
+  endpointPublishingStrategy:
+    type: NodePortService
+  namespaceSelector:
+    matchExpressions:
+    - key: kubernetes.io/metadata.name
+      operator: In
+      values:
+      - ingress-test
+      - clusters-tenant-a
\ No newline at end of file
diff --git a/content/cluster-installation/hosted-control-plane/tenant-network/ingress-shared-haproxy.conf b/content/cluster-installation/hosted-control-plane/tenant-network/ingress-shared-haproxy.conf
new file mode 100644
index 00000000..e111e741
--- /dev/null
+++ b/content/cluster-installation/hosted-control-plane/tenant-network/ingress-shared-haproxy.conf
@@ -0,0 +1,39 @@
+global
+  log         127.0.0.1 local2
+  pidfile     /var/run/haproxy.pid
+  maxconn     4000
+  daemon
+defaults
+  mode                    http
+  log                     global
+  option                  dontlognull
+  option http-server-close
+  option                  redispatch
+  retries                 3
+  timeout http-request    10s
+  timeout queue           1m
+  timeout connect         10s
+  timeout client          1m
+  timeout server          1m
+  timeout http-keep-alive 10s
+  timeout check           10s
+  maxconn                 3000
+
+listen ingress-router-443
+  bind *:443
+  mode tcp
+  balance source
+  server ucs-blade-server-5 10.32.96.105:32488 check inter 1s
+  server ucs-blade-server-6 10.32.96.106:32488 check inter 1s        
+  server ucs-blade-server-7 10.32.96.107:32488 check inter 1s
+  server ucs-blade-server-8 10.32.96.108:32488 check inter 1s
+
+listen ingress-router-80
+  bind *:80
+  mode tcp
+  balance source
+  server ucs-blade-server-5 10.32.96.105:32460 check inter 1s
+  server ucs-blade-server-6 10.32.96.106:32460 check inter 1s        
+  server ucs-blade-server-7 10.32.96.107:32460 check inter 1s
+  server ucs-blade-server-8 10.32.96.108:32460 check inter 1s
+
diff --git a/content/cluster-installation/hosted-control-plane/tenant-network/overview.drawio b/content/cluster-installation/hosted-control-plane/tenant-network/overview.drawio
new file mode 100644
index 00000000..af78cf9b
--- /dev/null
+++ b/content/cluster-installation/hosted-control-plane/tenant-network/overview.drawio
@@ -0,0 +1,264 @@
+<mxfile host="Electron" pages="2">
+  <diagram name="Page-1" id="YXbzoI76saGIsczbTkJC">
+    <mxGraphModel dx="1182" dy="1185" grid="1" gridSize="10" guides="1" tooltips="1" connect="1" arrows="1" fold="1" page="1" pageScale="1" pageWidth="1169" pageHeight="827" math="0" shadow="0">
+      <root>
+        <mxCell id="0" />
+        <mxCell id="1" parent="0" />
+        <mxCell id="B3RradtRmsC1N9M19CpR-1" parent="1" style="rounded=0;whiteSpace=wrap;html=1;align=left;verticalAlign=top;fontStyle=1" value="&lt;b&gt;&lt;font style=&quot;font-size: 18px;&quot;&gt;OpenShift Hub Cluster&lt;/font&gt;&lt;/b&gt;" vertex="1">
+          <mxGeometry height="280" width="470" x="30" y="80" as="geometry" />
+        </mxCell>
+        <mxCell id="B3RradtRmsC1N9M19CpR-2" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#e1d5e7;strokeColor=#9673a6;align=center;verticalAlign=bottom;fontStyle=1" value="&lt;font face=&quot;Arial, sans-serif&quot;&gt;&lt;span style=&quot;white-space-collapse: preserve;&quot;&gt;Hosted Control Plane of Tenant A&lt;/span&gt;&lt;/font&gt;" vertex="1">
+          <mxGeometry height="190" width="284" x="173" y="130" as="geometry" />
+        </mxCell>
+        <mxCell id="B3RradtRmsC1N9M19CpR-3" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fillColor=#d5e8d4;strokeColor=#82b366;align=left;points=[[0,0,0,0,0],[0,0.25,0,0,0],[0,0.5,0,0,0],[0,0.75,0,0,0],[0,1,0,0,0],[0.04,0,0,0,0],[0.08,0,0,0,0],[0.12,0,0,0,0],[0.15,0,0,0,0],[0.19,0,0,0,0],[0.23,0,0,0,0],[0.25,0,0,0,0],[0.25,1,0,0,0],[0.27,0,0,0,0],[0.31,0,0,0,0],[0.35,0,0,0,0],[0.38,0,0,0,0],[0.42,0,0,0,0],[0.46,0,0,0,0],[0.5,0,0,0,0],[0.5,1,0,0,0],[0.54,0,0,0,0],[0.58,0,0,0,0],[0.62,0,0,0,0],[0.65,0,0,0,0],[0.69,0,0,0,0],[0.73,0,0,0,0],[0.75,0,0,0,0],[0.75,1,0,0,0],[0.77,0,0,0,0],[0.81,0,0,0,0],[0.85,0,0,0,0],[0.88,0,0,0,0],[0.92,0,0,0,0],[0.96,0,0,0,0],[1,0,0,0,0],[1,0.25,0,0,0],[1,0.5,0,0,0],[1,0.75,0,0,0],[1,1,0,0,0]];" value="&lt;font style=&quot;font-size: 16px;&quot;&gt;&lt;b&gt;Managment Network Segment&lt;/b&gt;&lt;/font&gt;" vertex="1">
+          <mxGeometry height="20" width="487" x="30" y="403" as="geometry" />
+        </mxCell>
+        <mxCell id="B3RradtRmsC1N9M19CpR-4" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fillColor=#e1d5e7;strokeColor=#9673a6;points=[[0,0,0,0,0],[0,0.25,0,0,0],[0,0.5,0,0,0],[0,0.75,0,0,0],[0,1,0,0,0],[0.02,1,0,0,0],[0.04,0,0,0,0],[0.04,1,0,0,0],[0.06,1,0,0,0],[0.08,0,0,0,0],[0.08,1,0,0,0],[0.1,1,0,0,0],[0.12,0,0,0,0],[0.12,1,0,0,0],[0.14,1,0,0,0],[0.15,0,0,0,0],[0.16,1,0,0,0],[0.18,1,0,0,0],[0.19,0,0,0,0],[0.2,1,0,0,0],[0.22,1,0,0,0],[0.23,0,0,0,0],[0.24,1,0,0,0],[0.25,0,0,0,0],[0.25,1,0,0,0],[0.27,0,0,0,0],[0.27,1,0,0,0],[0.29,1,0,0,0],[0.31,0,0,0,0],[0.31,1,0,0,0],[0.33,1,0,0,0],[0.35,0,0,0,0],[0.35,1,0,0,0],[0.37,1,0,0,0],[0.38,0,0,0,0],[0.39,1,0,0,0],[0.41,1,0,0,0],[0.42,0,0,0,0],[0.43,1,0,0,0],[0.45,1,0,0,0],[0.46,0,0,0,0],[0.47,1,0,0,0],[0.49,1,0,0,0],[0.5,0,0,0,0],[0.5,1,0,0,0],[0.51,1,0,0,0],[0.53,1,0,0,0],[0.54,0,0,0,0],[0.55,1,0,0,0],[0.57,1,0,0,0],[0.58,0,0,0,0],[0.59,1,0,0,0],[0.61,1,0,0,0],[0.62,0,0,0,0],[0.63,1,0,0,0],[0.65,0,0,0,0],[0.65,1,0,0,0],[0.67,1,0,0,0],[0.69,0,0,0,0],[0.69,1,0,0,0],[0.71,1,0,0,0],[0.73,0,0,0,0],[0.73,1,0,0,0],[0.75,0,0,0,0],[0.75,1,0,0,0],[0.76,1,0,0,0],[0.77,0,0,0,0],[0.78,1,0,0,0],[0.8,1,0,0,0],[0.81,0,0,0,0],[0.82,1,0,0,0],[0.84,1,0,0,0],[0.85,0,0,0,0],[0.86,1,0,0,0],[0.88,0,0,0,0],[0.88,1,0,0,0],[0.9,1,0,0,0],[0.92,0,0,0,0],[0.92,1,0,0,0],[0.94,1,0,0,0],[0.96,0,0,0,0],[0.96,1,0,0,0],[0.98,1,0,0,0],[1,0,0,0,0],[1,0.25,0,0,0],[1,0.5,0,0,0],[1,0.75,0,0,0],[1,1,0,0,0]];align=left;" value="&lt;b&gt;&lt;font style=&quot;font-size: 18px;&quot;&gt;Tenant A Network Segment&lt;/font&gt;&lt;/b&gt;" vertex="1">
+          <mxGeometry height="20" width="477" x="30" y="20" as="geometry" />
+        </mxCell>
+        <mxCell id="B3RradtRmsC1N9M19CpR-16" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#0050ef;fontColor=#ffffff;strokeColor=#001DBC;" value="Worker VM 1" vertex="1">
+          <mxGeometry height="30" width="120" x="183" y="170" as="geometry" />
+        </mxCell>
+        <mxCell id="B3RradtRmsC1N9M19CpR-17" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#0050ef;fontColor=#ffffff;strokeColor=#001DBC;" value="Worker VM 2" vertex="1">
+          <mxGeometry height="30" width="120" x="318" y="170" as="geometry" />
+        </mxCell>
+        <mxCell id="B3RradtRmsC1N9M19CpR-18" edge="1" parent="1" source="B3RradtRmsC1N9M19CpR-17" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#e1d5e7;strokeColor=#9673a6;exitX=0.75;exitY=0;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.78;entryY=1;entryDx=0;entryDy=0;entryPerimeter=0;" target="B3RradtRmsC1N9M19CpR-4" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="680" y="470" as="sourcePoint" />
+            <mxPoint x="627" y="180" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="B3RradtRmsC1N9M19CpR-20" edge="1" parent="1" source="B3RradtRmsC1N9M19CpR-16" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#e1d5e7;strokeColor=#9673a6;startArrow=oval;startFill=1;endFill=1;entryX=0.53;entryY=1;entryDx=0;entryDy=0;entryPerimeter=0;exitX=0.75;exitY=0;exitDx=0;exitDy=0;" target="B3RradtRmsC1N9M19CpR-4" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="420" y="510" as="sourcePoint" />
+            <mxPoint x="90" y="530" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="B3RradtRmsC1N9M19CpR-32" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#0050ef;fontColor=#ffffff;strokeColor=#001DBC;" value="Worker BareMetal" vertex="1">
+          <mxGeometry height="30" width="120" x="80" y="343" as="geometry" />
+        </mxCell>
+        <mxCell id="B3RradtRmsC1N9M19CpR-33" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#0050ef;fontColor=#ffffff;strokeColor=#001DBC;" value="Worker BareMetal" vertex="1">
+          <mxGeometry height="30" width="120" x="215" y="343" as="geometry" />
+        </mxCell>
+        <mxCell id="B3RradtRmsC1N9M19CpR-34" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#0050ef;fontColor=#ffffff;strokeColor=#001DBC;" value="Worker BareMetal" vertex="1">
+          <mxGeometry height="30" width="120" x="350" y="343" as="geometry" />
+        </mxCell>
+        <mxCell id="B3RradtRmsC1N9M19CpR-35" edge="1" parent="1" source="B3RradtRmsC1N9M19CpR-34" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#d5e8d4;strokeColor=#82b366;exitX=0.5;exitY=1;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.77;entryY=0;entryDx=0;entryDy=0;entryPerimeter=0;" target="B3RradtRmsC1N9M19CpR-3" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="560" y="403" as="sourcePoint" />
+            <mxPoint x="520" y="533" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="B3RradtRmsC1N9M19CpR-36" edge="1" parent="1" source="B3RradtRmsC1N9M19CpR-33" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#d5e8d4;strokeColor=#82b366;exitX=0.5;exitY=1;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.5;entryY=0;entryDx=0;entryDy=0;entryPerimeter=0;" target="B3RradtRmsC1N9M19CpR-3" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="420" y="453" as="sourcePoint" />
+            <mxPoint x="435" y="543" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="B3RradtRmsC1N9M19CpR-37" edge="1" parent="1" source="B3RradtRmsC1N9M19CpR-32" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#d5e8d4;strokeColor=#82b366;exitX=0.5;exitY=1;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.23;entryY=0;entryDx=0;entryDy=0;entryPerimeter=0;" target="B3RradtRmsC1N9M19CpR-3" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="220" y="433" as="sourcePoint" />
+            <mxPoint x="210" y="523" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="B3RradtRmsC1N9M19CpR-48" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;" value="&lt;span id=&quot;docs-internal-guid-aa7dbe45-7fff-f4de-7713-e002c688d2cc&quot;&gt;&lt;span style=&quot;font-family: Arial, sans-serif; background-color: transparent; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; font-variant-emoji: normal; vertical-align: baseline; white-space-collapse: preserve;&quot;&gt;Ignition&lt;/span&gt;&lt;/span&gt;" vertex="1">
+          <mxGeometry height="30" width="120" x="318" y="210" as="geometry" />
+        </mxCell>
+        <mxCell id="B3RradtRmsC1N9M19CpR-49" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;" value="API Server" vertex="1">
+          <mxGeometry height="30" width="120" x="318" y="250" as="geometry" />
+        </mxCell>
+        <mxCell id="B3RradtRmsC1N9M19CpR-50" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;" value="OAuth" vertex="1">
+          <mxGeometry height="30" width="120" x="183" y="210" as="geometry" />
+        </mxCell>
+        <mxCell id="B3RradtRmsC1N9M19CpR-51" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;" value="&lt;span id=&quot;docs-internal-guid-44e9e855-7fff-e21b-1846-7dce005654dc&quot;&gt;&lt;span style=&quot;font-family: Arial, sans-serif; background-color: transparent; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; font-variant-emoji: normal; vertical-align: baseline; white-space-collapse: preserve;&quot;&gt;Konnectivity&lt;/span&gt;&lt;/span&gt;" vertex="1">
+          <mxGeometry height="30" width="120" x="183" y="250" as="geometry" />
+        </mxCell>
+      </root>
+    </mxGraphModel>
+  </diagram>
+  <diagram id="p3NjpKLCXG78LkdIa7RZ" name="Page-2">
+    <mxGraphModel dx="1182" dy="1185" grid="1" gridSize="10" guides="1" tooltips="1" connect="1" arrows="1" fold="1" page="1" pageScale="1" pageWidth="1169" pageHeight="827" math="0" shadow="0">
+      <root>
+        <mxCell id="0" />
+        <mxCell id="1" parent="0" />
+        <mxCell id="9mWi-qD6ckF2BgsZOZXX-1" parent="1" style="rounded=0;whiteSpace=wrap;html=1;align=left;verticalAlign=top;fontStyle=1" value="&lt;b&gt;&lt;font style=&quot;font-size: 18px;&quot;&gt;OpenShift Hub Cluster&lt;/font&gt;&lt;/b&gt;" vertex="1">
+          <mxGeometry height="390" width="470" x="40" y="80" as="geometry" />
+        </mxCell>
+        <mxCell id="9mWi-qD6ckF2BgsZOZXX-2" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#e1d5e7;strokeColor=#9673a6;align=center;verticalAlign=top;fontStyle=1" value="&lt;font face=&quot;Arial, sans-serif&quot;&gt;&lt;span style=&quot;white-space-collapse: preserve;&quot;&gt;hosted control plane namespace&lt;/span&gt;&lt;/font&gt;" vertex="1">
+          <mxGeometry height="220" width="430" x="70" y="110" as="geometry" />
+        </mxCell>
+        <mxCell id="9mWi-qD6ckF2BgsZOZXX-3" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fillColor=#d5e8d4;strokeColor=#82b366;align=left;points=[[0,0,0,0,0],[0,0.25,0,0,0],[0,0.5,0,0,0],[0,0.75,0,0,0],[0,1,0,0,0],[0.04,0,0,0,0],[0.08,0,0,0,0],[0.12,0,0,0,0],[0.15,0,0,0,0],[0.19,0,0,0,0],[0.23,0,0,0,0],[0.25,0,0,0,0],[0.25,1,0,0,0],[0.27,0,0,0,0],[0.31,0,0,0,0],[0.35,0,0,0,0],[0.38,0,0,0,0],[0.42,0,0,0,0],[0.46,0,0,0,0],[0.5,0,0,0,0],[0.5,1,0,0,0],[0.54,0,0,0,0],[0.58,0,0,0,0],[0.62,0,0,0,0],[0.65,0,0,0,0],[0.69,0,0,0,0],[0.73,0,0,0,0],[0.75,0,0,0,0],[0.75,1,0,0,0],[0.77,0,0,0,0],[0.81,0,0,0,0],[0.85,0,0,0,0],[0.88,0,0,0,0],[0.92,0,0,0,0],[0.96,0,0,0,0],[1,0,0,0,0],[1,0.25,0,0,0],[1,0.5,0,0,0],[1,0.75,0,0,0],[1,1,0,0,0]];" value="&lt;b style=&quot;font-size: 16px;&quot;&gt;Managment Network Segment&lt;/b&gt;" vertex="1">
+          <mxGeometry height="20" width="1000" x="40" y="520" as="geometry" />
+        </mxCell>
+        <mxCell id="9mWi-qD6ckF2BgsZOZXX-4" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fillColor=#e1d5e7;strokeColor=#9673a6;points=[[0,0,0,0,0],[0,0.25,0,0,0],[0,0.5,0,0,0],[0,0.75,0,0,0],[0,1,0,0,0],[0.02,1,0,0,0],[0.04,0,0,0,0],[0.04,1,0,0,0],[0.06,1,0,0,0],[0.08,0,0,0,0],[0.08,1,0,0,0],[0.1,1,0,0,0],[0.12,0,0,0,0],[0.12,1,0,0,0],[0.14,1,0,0,0],[0.15,0,0,0,0],[0.16,1,0,0,0],[0.18,1,0,0,0],[0.19,0,0,0,0],[0.2,1,0,0,0],[0.22,1,0,0,0],[0.23,0,0,0,0],[0.24,1,0,0,0],[0.25,0,0,0,0],[0.25,1,0,0,0],[0.27,0,0,0,0],[0.27,1,0,0,0],[0.29,1,0,0,0],[0.31,0,0,0,0],[0.31,1,0,0,0],[0.33,1,0,0,0],[0.35,0,0,0,0],[0.35,1,0,0,0],[0.37,1,0,0,0],[0.38,0,0,0,0],[0.39,1,0,0,0],[0.41,1,0,0,0],[0.42,0,0,0,0],[0.43,1,0,0,0],[0.45,1,0,0,0],[0.46,0,0,0,0],[0.47,1,0,0,0],[0.49,1,0,0,0],[0.5,0,0,0,0],[0.5,1,0,0,0],[0.51,1,0,0,0],[0.53,1,0,0,0],[0.54,0,0,0,0],[0.55,1,0,0,0],[0.57,1,0,0,0],[0.58,0,0,0,0],[0.59,1,0,0,0],[0.61,1,0,0,0],[0.62,0,0,0,0],[0.63,1,0,0,0],[0.65,0,0,0,0],[0.65,1,0,0,0],[0.67,1,0,0,0],[0.69,0,0,0,0],[0.69,1,0,0,0],[0.71,1,0,0,0],[0.73,0,0,0,0],[0.73,1,0,0,0],[0.75,0,0,0,0],[0.75,1,0,0,0],[0.76,1,0,0,0],[0.77,0,0,0,0],[0.78,1,0,0,0],[0.8,1,0,0,0],[0.81,0,0,0,0],[0.82,1,0,0,0],[0.84,1,0,0,0],[0.85,0,0,0,0],[0.86,1,0,0,0],[0.88,0,0,0,0],[0.88,1,0,0,0],[0.9,1,0,0,0],[0.92,0,0,0,0],[0.92,1,0,0,0],[0.94,1,0,0,0],[0.96,0,0,0,0],[0.96,1,0,0,0],[0.98,1,0,0,0],[1,0,0,0,0],[1,0.25,0,0,0],[1,0.5,0,0,0],[1,0.75,0,0,0],[1,1,0,0,0]];align=left;" value="&lt;b&gt;&lt;font style=&quot;font-size: 18px;&quot;&gt;Tenant A Network Segment&lt;/font&gt;&lt;/b&gt;" vertex="1">
+          <mxGeometry height="20" width="830" x="210" y="40" as="geometry" />
+        </mxCell>
+        <mxCell id="9mWi-qD6ckF2BgsZOZXX-5" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#ffe6cc;strokeColor=#d79b00;" value="External &lt;br&gt;Load Balancer" vertex="1">
+          <mxGeometry height="35" width="120" x="650" y="170" as="geometry" />
+        </mxCell>
+        <mxCell id="9mWi-qD6ckF2BgsZOZXX-6" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;" value="APIServer" vertex="1">
+          <mxGeometry height="30" width="120" x="370" y="170" as="geometry" />
+        </mxCell>
+        <mxCell id="9mWi-qD6ckF2BgsZOZXX-7" edge="1" parent="1" source="9mWi-qD6ckF2BgsZOZXX-6" style="endArrow=none;dashed=1;html=1;dashPattern=1 3;strokeWidth=2;rounded=0;entryX=0;entryY=0.5;entryDx=0;entryDy=0;exitX=1;exitY=0.5;exitDx=0;exitDy=0;" target="9mWi-qD6ckF2BgsZOZXX-5" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="290" y="460" as="sourcePoint" />
+            <mxPoint x="340" y="410" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="9mWi-qD6ckF2BgsZOZXX-8" edge="1" parent="1" source="9mWi-qD6ckF2BgsZOZXX-5" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#d5e8d4;strokeColor=#82b366;exitX=0.25;exitY=1;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.62;entryY=0;entryDx=0;entryDy=0;entryPerimeter=0;" target="9mWi-qD6ckF2BgsZOZXX-3" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="110" y="480" as="sourcePoint" />
+            <mxPoint x="650" y="590" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="9mWi-qD6ckF2BgsZOZXX-9" edge="1" parent="1" source="9mWi-qD6ckF2BgsZOZXX-5" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#e1d5e7;strokeColor=#9673a6;exitX=0.25;exitY=0;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.5;entryY=1;entryDx=0;entryDy=0;entryPerimeter=0;" target="9mWi-qD6ckF2BgsZOZXX-4" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="530" y="550" as="sourcePoint" />
+            <mxPoint x="720" y="550" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="9mWi-qD6ckF2BgsZOZXX-10" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;" value="&lt;span id=&quot;docs-internal-guid-aa7dbe45-7fff-f4de-7713-e002c688d2cc&quot;&gt;&lt;span style=&quot;font-family: Arial, sans-serif; background-color: transparent; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; font-variant-emoji: normal; vertical-align: baseline; white-space-collapse: preserve;&quot;&gt;Ignition&lt;/span&gt;&lt;/span&gt;" vertex="1">
+          <mxGeometry height="30" width="80" x="265" y="290" as="geometry" />
+        </mxCell>
+        <mxCell id="9mWi-qD6ckF2BgsZOZXX-11" edge="1" parent="1" source="9mWi-qD6ckF2BgsZOZXX-22" style="endArrow=none;dashed=1;html=1;dashPattern=1 3;strokeWidth=2;rounded=0;entryX=0;entryY=0.5;entryDx=0;entryDy=0;exitX=1;exitY=0.5;exitDx=0;exitDy=0;" target="9mWi-qD6ckF2BgsZOZXX-29" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="520" y="160" as="sourcePoint" />
+            <mxPoint x="590" y="160" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="9mWi-qD6ckF2BgsZOZXX-12" edge="1" parent="1" source="9mWi-qD6ckF2BgsZOZXX-22" style="endArrow=none;dashed=1;html=1;dashPattern=1 3;strokeWidth=2;rounded=0;entryX=1;entryY=0.5;entryDx=0;entryDy=0;exitX=0.5;exitY=0;exitDx=0;exitDy=0;" target="9mWi-qD6ckF2BgsZOZXX-10" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="470" y="420" as="sourcePoint" />
+            <mxPoint x="610" y="410" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="9mWi-qD6ckF2BgsZOZXX-13" edge="1" parent="1" source="9mWi-qD6ckF2BgsZOZXX-22" style="endArrow=none;dashed=1;html=1;dashPattern=1 3;strokeWidth=2;rounded=0;entryX=0;entryY=0.5;entryDx=0;entryDy=0;exitX=0.5;exitY=0;exitDx=0;exitDy=0;" target="9mWi-qD6ckF2BgsZOZXX-21" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="650" y="470" as="sourcePoint" />
+            <mxPoint x="530" y="400" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="9mWi-qD6ckF2BgsZOZXX-14" edge="1" parent="1" source="9mWi-qD6ckF2BgsZOZXX-22" style="endArrow=none;dashed=1;html=1;dashPattern=1 3;strokeWidth=2;rounded=0;entryX=0;entryY=0.5;entryDx=0;entryDy=0;exitX=0.5;exitY=0;exitDx=0;exitDy=0;" target="9mWi-qD6ckF2BgsZOZXX-19" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="350" y="390" as="sourcePoint" />
+            <mxPoint x="440" y="360" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="9mWi-qD6ckF2BgsZOZXX-15" parent="1" style="rounded=0;whiteSpace=wrap;html=1;align=left;fontFamily=Helvetica;fontStyle=0;fillColor=#1ba1e2;fontColor=#ffffff;strokeColor=#006EAF;" value="DNS: api.tenant-a.coe.muc.redhat.com&lt;div&gt;IP:&amp;nbsp; &amp;nbsp; &amp;nbsp;192.168.203.10&lt;/div&gt;" vertex="1">
+          <mxGeometry height="40" width="220" x="740" y="135" as="geometry" />
+        </mxCell>
+        <mxCell id="9mWi-qD6ckF2BgsZOZXX-16" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#0050ef;fontColor=#ffffff;strokeColor=#001DBC;" value="Worker VM 1" vertex="1">
+          <mxGeometry height="30" width="120" x="80" y="150" as="geometry" />
+        </mxCell>
+        <mxCell id="9mWi-qD6ckF2BgsZOZXX-17" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#0050ef;fontColor=#ffffff;strokeColor=#001DBC;" value="Worker VM 2" vertex="1">
+          <mxGeometry height="30" width="120" x="215" y="150" as="geometry" />
+        </mxCell>
+        <mxCell id="9mWi-qD6ckF2BgsZOZXX-18" edge="1" parent="1" source="9mWi-qD6ckF2BgsZOZXX-17" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#e1d5e7;strokeColor=#9673a6;exitX=0.75;exitY=0;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.1;entryY=1;entryDx=0;entryDy=0;entryPerimeter=0;" target="9mWi-qD6ckF2BgsZOZXX-4" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="690" y="470" as="sourcePoint" />
+            <mxPoint x="440" y="550" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="9mWi-qD6ckF2BgsZOZXX-19" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;" value="OAuthServer" vertex="1">
+          <mxGeometry height="30" width="120" x="370" y="250" as="geometry" />
+        </mxCell>
+        <mxCell id="9mWi-qD6ckF2BgsZOZXX-20" edge="1" parent="1" source="9mWi-qD6ckF2BgsZOZXX-16" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#e1d5e7;strokeColor=#9673a6;startArrow=oval;startFill=1;endFill=1;entryX=0.04;entryY=1;entryDx=0;entryDy=0;entryPerimeter=0;" target="9mWi-qD6ckF2BgsZOZXX-4" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="430" y="510" as="sourcePoint" />
+            <mxPoint x="100" y="530" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="9mWi-qD6ckF2BgsZOZXX-21" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;" value="&lt;span id=&quot;docs-internal-guid-44e9e855-7fff-e21b-1846-7dce005654dc&quot;&gt;&lt;span style=&quot;font-family: Arial, sans-serif; background-color: transparent; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; font-variant-emoji: normal; vertical-align: baseline; white-space-collapse: preserve;&quot;&gt;Konnectivity&lt;/span&gt;&lt;/span&gt;" vertex="1">
+          <mxGeometry height="30" width="120" x="370" y="290" as="geometry" />
+        </mxCell>
+        <mxCell id="9mWi-qD6ckF2BgsZOZXX-22" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;" value="&lt;span id=&quot;docs-internal-guid-aa7dbe45-7fff-f4de-7713-e002c688d2cc&quot;&gt;&lt;span style=&quot;font-family: Arial, sans-serif; background-color: transparent; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; font-variant-emoji: normal; vertical-align: baseline; white-space-collapse: preserve;&quot;&gt;Router/Ingress&lt;/span&gt;&lt;/span&gt;&lt;div&gt;&lt;span&gt;&lt;span style=&quot;font-family: Arial, sans-serif; background-color: transparent; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; font-variant-emoji: normal; vertical-align: baseline; white-space-collapse: preserve;&quot;&gt; Shard&lt;/span&gt;&lt;/span&gt;&lt;/div&gt;&lt;div&gt;&lt;span&gt;&lt;span style=&quot;font-family: Arial, sans-serif; background-color: transparent; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; font-variant-emoji: normal; vertical-align: baseline; white-space-collapse: preserve;&quot;&gt;for tentant a&lt;/span&gt;&lt;/span&gt;&lt;/div&gt;" vertex="1">
+          <mxGeometry height="60" width="120" x="345" y="380" as="geometry" />
+        </mxCell>
+        <mxCell id="9mWi-qD6ckF2BgsZOZXX-23" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#ffe6cc;strokeColor=#d79b00;" value="External &lt;br&gt;Load Balancer" vertex="1">
+          <mxGeometry height="40" width="110" x="545" y="220" as="geometry" />
+        </mxCell>
+        <mxCell id="9mWi-qD6ckF2BgsZOZXX-24" parent="1" style="rounded=0;whiteSpace=wrap;html=1;align=left;fontFamily=Helvetica;fontStyle=0;fillColor=#1ba1e2;fontColor=#ffffff;strokeColor=#006EAF;" value="DNS:&amp;nbsp;&lt;span style=&quot;background-color: transparent; color: light-dark(rgb(255, 255, 255), rgb(18, 18, 18));&quot;&gt;*.apps.tenant-a.coe.muc.redhat.com&lt;/span&gt;&lt;div&gt;&lt;div&gt;&lt;span style=&quot;background-color: transparent; color: light-dark(rgb(255, 255, 255), rgb(18, 18, 18));&quot;&gt;IP:&amp;nbsp; &amp;nbsp; &amp;nbsp;192.168.203.12&lt;/span&gt;&lt;/div&gt;&lt;/div&gt;" vertex="1">
+          <mxGeometry height="50" width="290" x="620" y="250" as="geometry" />
+        </mxCell>
+        <mxCell id="9mWi-qD6ckF2BgsZOZXX-25" edge="1" parent="1" source="9mWi-qD6ckF2BgsZOZXX-23" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#e1d5e7;strokeColor=#9673a6;exitX=0.5;exitY=0;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.39;entryY=1.1;entryDx=0;entryDy=0;entryPerimeter=0;" target="9mWi-qD6ckF2BgsZOZXX-4" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="690" y="460" as="sourcePoint" />
+            <mxPoint x="805" y="540" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="9mWi-qD6ckF2BgsZOZXX-26" edge="1" parent="1" source="9mWi-qD6ckF2BgsZOZXX-28" style="endArrow=none;dashed=1;html=1;dashPattern=1 3;strokeWidth=2;rounded=0;entryX=0;entryY=0.5;entryDx=0;entryDy=0;exitX=1;exitY=0.5;exitDx=0;exitDy=0;" target="9mWi-qD6ckF2BgsZOZXX-23" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="680" y="280" as="sourcePoint" />
+            <mxPoint x="494" y="340" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="9mWi-qD6ckF2BgsZOZXX-27" parent="1" style="rounded=0;whiteSpace=wrap;html=1;align=left;verticalAlign=top;" value="OpenShift - Tenant A" vertex="1">
+          <mxGeometry height="75" width="170" x="115" y="175" as="geometry" />
+        </mxCell>
+        <mxCell id="9mWi-qD6ckF2BgsZOZXX-28" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;" value="&lt;span id=&quot;docs-internal-guid-44e9e855-7fff-e21b-1846-7dce005654dc&quot;&gt;&lt;span style=&quot;font-family: Arial, sans-serif; background-color: transparent; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; font-variant-emoji: normal; vertical-align: baseline; white-space-collapse: preserve;&quot;&gt;Default Ingress&lt;/span&gt;&lt;/span&gt;" vertex="1">
+          <mxGeometry height="30" width="120" x="145" y="210" as="geometry" />
+        </mxCell>
+        <mxCell id="9mWi-qD6ckF2BgsZOZXX-29" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#ffe6cc;strokeColor=#d79b00;" value="External &lt;br&gt;Load Balancer&lt;div&gt;(ingress-shared-lb)&lt;/div&gt;" vertex="1">
+          <mxGeometry height="50" width="120" x="530" y="319" as="geometry" />
+        </mxCell>
+        <mxCell id="9mWi-qD6ckF2BgsZOZXX-30" edge="1" parent="1" source="9mWi-qD6ckF2BgsZOZXX-29" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#d5e8d4;strokeColor=#82b366;exitX=0.25;exitY=1;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.5;entryY=0;entryDx=0;entryDy=0;entryPerimeter=0;" target="9mWi-qD6ckF2BgsZOZXX-3" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="640" y="550" as="sourcePoint" />
+            <mxPoint x="580" y="590" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="9mWi-qD6ckF2BgsZOZXX-31" edge="1" parent="1" source="9mWi-qD6ckF2BgsZOZXX-29" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#e1d5e7;strokeColor=#9673a6;exitX=0.25;exitY=0;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.35;entryY=1;entryDx=0;entryDy=0;entryPerimeter=0;" target="9mWi-qD6ckF2BgsZOZXX-4" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="710" y="530" as="sourcePoint" />
+            <mxPoint x="610" y="590" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="9mWi-qD6ckF2BgsZOZXX-32" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#0050ef;fontColor=#ffffff;strokeColor=#001DBC;" value="Worker BareMetal" vertex="1">
+          <mxGeometry height="30" width="120" x="90" y="460" as="geometry" />
+        </mxCell>
+        <mxCell id="9mWi-qD6ckF2BgsZOZXX-33" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#0050ef;fontColor=#ffffff;strokeColor=#001DBC;" value="Worker BareMetal" vertex="1">
+          <mxGeometry height="30" width="120" x="225" y="460" as="geometry" />
+        </mxCell>
+        <mxCell id="9mWi-qD6ckF2BgsZOZXX-34" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#0050ef;fontColor=#ffffff;strokeColor=#001DBC;" value="Worker BareMetal" vertex="1">
+          <mxGeometry height="30" width="120" x="360" y="460" as="geometry" />
+        </mxCell>
+        <mxCell id="9mWi-qD6ckF2BgsZOZXX-35" edge="1" parent="1" source="9mWi-qD6ckF2BgsZOZXX-34" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#d5e8d4;strokeColor=#82b366;exitX=0.5;exitY=1;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.38;entryY=0;entryDx=0;entryDy=0;entryPerimeter=0;" target="9mWi-qD6ckF2BgsZOZXX-3" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="570" y="520" as="sourcePoint" />
+            <mxPoint x="530" y="650" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="9mWi-qD6ckF2BgsZOZXX-36" edge="1" parent="1" source="9mWi-qD6ckF2BgsZOZXX-33" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#d5e8d4;strokeColor=#82b366;exitX=0.5;exitY=1;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.25;entryY=0;entryDx=0;entryDy=0;entryPerimeter=0;" target="9mWi-qD6ckF2BgsZOZXX-3" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="430" y="570" as="sourcePoint" />
+            <mxPoint x="445" y="660" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="9mWi-qD6ckF2BgsZOZXX-37" edge="1" parent="1" source="9mWi-qD6ckF2BgsZOZXX-32" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#d5e8d4;strokeColor=#82b366;exitX=0.5;exitY=1;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.12;entryY=0;entryDx=0;entryDy=0;entryPerimeter=0;" target="9mWi-qD6ckF2BgsZOZXX-3" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="230" y="550" as="sourcePoint" />
+            <mxPoint x="220" y="640" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="9mWi-qD6ckF2BgsZOZXX-38" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#ffe6cc;strokeColor=#d79b00;" value="VyOS&lt;div&gt;router-2003&lt;/div&gt;" vertex="1">
+          <mxGeometry height="50" width="90" x="956" y="360" as="geometry" />
+        </mxCell>
+        <mxCell id="9mWi-qD6ckF2BgsZOZXX-39" edge="1" parent="1" source="9mWi-qD6ckF2BgsZOZXX-38" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#d5e8d4;strokeColor=#82b366;exitX=0.5;exitY=1;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.96;entryY=0;entryDx=0;entryDy=0;entryPerimeter=0;" target="9mWi-qD6ckF2BgsZOZXX-3" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="680" y="470" as="sourcePoint" />
+            <mxPoint x="660" y="785" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="9mWi-qD6ckF2BgsZOZXX-40" edge="1" parent="1" source="9mWi-qD6ckF2BgsZOZXX-38" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#e1d5e7;strokeColor=#9673a6;exitX=0.5;exitY=0;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.96;entryY=1;entryDx=0;entryDy=0;entryPerimeter=0;" target="9mWi-qD6ckF2BgsZOZXX-4" value="">
+          <mxGeometry height="50" relative="1" width="50" as="geometry">
+            <mxPoint x="695" y="190" as="sourcePoint" />
+            <mxPoint x="640" y="80" as="targetPoint" />
+          </mxGeometry>
+        </mxCell>
+        <mxCell id="9mWi-qD6ckF2BgsZOZXX-41" parent="1" style="rounded=0;whiteSpace=wrap;html=1;align=left;fontFamily=Helvetica;fontStyle=0;fillColor=#1ba1e2;fontColor=#ffffff;strokeColor=#006EAF;" value="DNS:&amp;nbsp;&lt;div&gt;- konnectivity.tenant-a.coe.muc.redhat.com&lt;div&gt;- oauth.&lt;span style=&quot;background-color: transparent; color: light-dark(rgb(255, 255, 255), rgb(18, 18, 18));&quot;&gt;tenant-a.coe.muc.redhat.com&lt;/span&gt;&lt;/div&gt;&lt;div&gt;&lt;span style=&quot;background-color: transparent; color: light-dark(rgb(255, 255, 255), rgb(18, 18, 18));&quot;&gt;- ignition.tenant-a.coe.muc.redhat.com&lt;/span&gt;&lt;/div&gt;&lt;div&gt;IP:&amp;nbsp; &amp;nbsp; &amp;nbsp;192.168.203.111&lt;/div&gt;&lt;/div&gt;" vertex="1">
+          <mxGeometry height="70" width="290" x="610" y="350" as="geometry" />
+        </mxCell>
+      </root>
+    </mxGraphModel>
+  </diagram>
+</mxfile>
diff --git a/content/cluster-installation/hosted-control-plane/tenant-network/vyos-router-2003.txt b/content/cluster-installation/hosted-control-plane/tenant-network/vyos-router-2003.txt
new file mode 100644
index 00000000..5e09bc44
--- /dev/null
+++ b/content/cluster-installation/hosted-control-plane/tenant-network/vyos-router-2003.txt
@@ -0,0 +1,27 @@
+set firewall group address-group ALLOWED-IPS address '10.32.96.1'
+set firewall group address-group ALLOWED-IPS address '10.32.96.31'
+set firewall group address-group ALLOWED-IPS address '10.32.111.254'
+set firewall ipv4 forward filter rule 49 action 'accept'
+set firewall ipv4 forward filter rule 49 description 'Allow IPs'
+set firewall ipv4 forward filter rule 49 destination group address-group 'ALLOWED-IPS'
+set firewall ipv4 forward filter rule 50 action 'drop'
+set firewall ipv4 forward filter rule 50 description 'Drop enire coe lab'
+set firewall ipv4 forward filter rule 50 destination address '10.32.96.0/20'
+
+set interfaces ethernet eth0 address 'dhcp'
+set interfaces ethernet eth1 address '192.168.203.1/24'
+
+set nat source rule 100 outbound-interface name 'eth0'
+set nat source rule 100 source address '192.168.203.0/24'
+set nat source rule 100 translation address 'masquerade'
+set service dhcp-server listen-interface 'eth1'
+set service dhcp-server shared-network-name coe-2003 authoritative
+set service dhcp-server shared-network-name coe-2003 subnet 192.168.203.0/24 option default-router '192.168.203.1'
+set service dhcp-server shared-network-name coe-2003 subnet 192.168.203.0/24 option name-server '10.32.96.1'
+set service dhcp-server shared-network-name coe-2003 subnet 192.168.203.0/24 range 1 start '192.168.203.100'
+set service dhcp-server shared-network-name coe-2003 subnet 192.168.203.0/24 range 1 stop '192.168.203.200'
+set service dhcp-server shared-network-name coe-2003 subnet 192.168.203.0/24 subnet-id '1'
+set service ssh
+set system host-name 'router-2003'
+set system name-server '10.32.96.1'
+set system name-server '10.32.96.31'
diff --git a/mkdocs.yml b/mkdocs.yml
index 4e97e62a..758dbf29 100644
--- a/mkdocs.yml
+++ b/mkdocs.yml
@@ -57,6 +57,7 @@ extra:
 extra_javascript:
   - https://viewer.diagrams.net/js/viewer-static.min.js
   - javascripts/drawio-reload.js
+
 # Extensions
 markdown_extensions:
   - pymdownx.emoji:
@@ -99,6 +100,7 @@ plugins:
       verbose: false
   - glightbox
   - drawio:
+      viewer_js: "https://viewer.diagrams.net/js/viewer-static.min.js"
       toolbar: false    # control if hovering on a diagram shows a toolbar for zooming or not (default: true)
       tooltips: false   # control if tooltips will be shown (default: true)
       edit: false       # control if edit button will be shown in the lightbox view (default: true)
@@ -131,6 +133,7 @@ nav:
       - Hosted Control Plane:
           - cluster-installation/hosted-control-plane/index.md
           - KubeVirt Networking: cluster-installation/hosted-control-plane/kubevirt-networking.md
+          - Tenant Network: cluster-installation/hosted-control-plane/tenant-network/index.md
       - Nvidia GPU:
           - cluster-installation/gpu/index.md
           - GPU on-prem: cluster-installation/gpu/gpu-on-prem.md

From 20bd0f017550be66a1b452a58ecbcfa6f2d09089 Mon Sep 17 00:00:00 2001
From: Robert Bohne <robert.bohne@redhat.com>
Date: Fri, 1 May 2026 23:05:55 +0200
Subject: [PATCH 2/4] Update mkdocs-drawio from 1.8.2 to 1.15.0

---
 requirements.txt | 2 +-
 run-local.sh     | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/requirements.txt b/requirements.txt
index 3502fd9b..56da76a8 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -8,5 +8,5 @@ git+https://github.com/fralau/mkdocs_macros_plugin.git@v1.3.7
 # Only for pre-commit checks not for mkdocs it selfe
 pre-commit==4.0.1
 mkdocs-git-authors-plugin==0.9.2
-mkdocs-drawio==1.8.2
+mkdocs-drawio==1.15.0
 mike==2.1.3
diff --git a/run-local.sh b/run-local.sh
index 25ab3bbc..83382995 100755
--- a/run-local.sh
+++ b/run-local.sh
@@ -1,4 +1,4 @@
 podman run -ti --user 0 --rm \
   -v $(pwd):/opt/app-root/src:z \
-  -p 8080:8080 quay.io/openshift-examples/builder:202601121657
+  -p 8080:8080 quay.io/openshift-examples/builder:202604300846
 

From daff04e3cc781adff64ad31997de625ca462fe34 Mon Sep 17 00:00:00 2001
From: Robert Bohne <robert.bohne@redhat.com>
Date: Fri, 1 May 2026 23:09:05 +0200
Subject: [PATCH 3/4] Fix linter

---
 .../tenant-network/index.md                   | 30 ++++++-------------
 .../ingress-controller-shard.yaml             | 10 +++----
 2 files changed, 14 insertions(+), 26 deletions(-)

diff --git a/content/cluster-installation/hosted-control-plane/tenant-network/index.md b/content/cluster-installation/hosted-control-plane/tenant-network/index.md
index a46cb89e..4d7b7979 100644
--- a/content/cluster-installation/hosted-control-plane/tenant-network/index.md
+++ b/content/cluster-installation/hosted-control-plane/tenant-network/index.md
@@ -19,7 +19,7 @@ Tested with:
 
 Challenge: running an hosted cluster with in different tenant network segment/vlan without widely open access from tenant segment to managment segment.
 
-Addtional requirement, the hub cluster should not have any address or network connection into the tenant network segment. It's only allowed to place virtual machines into the network segment. 
+Addtional requirement, the hub cluster should not have any address or network connection into the tenant network segment. It's only allowed to place virtual machines into the network segment.
 
 ![](overview.drawio){ page="Page-1" }
 
@@ -30,7 +30,7 @@ The hosted control plane compontents to expose into tenant network segment is mo
 * API Server
 * OAuth
 * Konnectivity
-* Ignition 
+* Ignition
 
 Here an list of possible exposing options for these components:
 
@@ -44,19 +44,16 @@ Here an list of possible exposing options for these components:
 For our proof of concept we want to try following, exposing the components via:
 
 * API Server: LoadBalancer
-* OAuth: Router/Ingress: via a dedicted router shard. 
-* Konnectivity: via a dedicted router shard. 
-* Ignition: via a dedicted router shard. 
+* OAuth: Router/Ingress: via a dedicted router shard.
+* Konnectivity: via a dedicted router shard.
+* Ignition: via a dedicted router shard.
 
 ## Exposing compontents via router/ingress shard
 
-The idea with the dedicated router/ingress shared is to expose the router/ingress shard into the tenant network segment and only for the hosted cluster components. 
+The idea with the dedicated router/ingress shared is to expose the router/ingress shard into the tenant network segment and only for the hosted cluster components.
 
 In front of the router/ingress shared is an external load balancer (for example, f5 bigip, netscaler,..) with access into the managment network segment and expose the router shared into the tenant network segment.
 
-
-
-
 ## Proof of concept envrioment overview
 
 ![](overview.drawio){ page="Page-2" }
@@ -76,7 +73,6 @@ In front of the router/ingress shared is an external load balancer (for example,
 * [2.3.4. Ingress sharding in OpenShift Container Platform](https://docs.redhat.com/en/documentation/openshift_container_platform/4.21/html/ingress_and_load_balancing/configuring-ingress-cluster-traffic#nw-ingress-sharding-concept_configuring-ingress-cluster-traffic-ingress-controller)
 * [3.1.3.8.1. Example load balancer configuration for user-provisioned clusters](https://docs.redhat.com/en/documentation/openshift_container_platform/4.21/html/installing_on_vmware_vsphere/user-provisioned-infrastructure)
 
-
 ???+ example "Ingress Controller"
 
     ```yaml
@@ -102,7 +98,7 @@ Ingress sharding load balancer is an RHEL 9 system with haproxy.
     --8<-- "content/cluster-installation/hosted-control-plane/tenant-network/ingress-shared-haproxy.conf"
     ```
 
-Add DNS Records 
+Add DNS Records
 
 ```bind
 konnectivity.tenant-a.coe.muc.redhat.com.       IN A 192.168.203.111
@@ -110,14 +106,7 @@ oauth.tenant-a.coe.muc.redhat.com.              IN A 192.168.203.111
 ignition.tenant-a.coe.muc.redhat.com.           IN A 192.168.203.111
 ```
 
-
-
-
-
-
-
-
-
+```yaml
 apiVersion: project.openshift.io/v1
 kind: Project
 metadata:
@@ -189,7 +178,6 @@ spec:
         type: Route
         route:
           hostname: ignition.tenant-a.coe.muc.redhat.com
-
 ---
 apiVersion: hypershift.openshift.io/v1beta1
 kind: NodePool
@@ -218,4 +206,4 @@ spec:
       attachDefaultNetwork: false
   release:
     image: quay.io/openshift-release-dev/ocp-release:4.21.11-multi
-
+```
diff --git a/content/cluster-installation/hosted-control-plane/tenant-network/ingress-controller-shard.yaml b/content/cluster-installation/hosted-control-plane/tenant-network/ingress-controller-shard.yaml
index fcd9b0a1..e5c7b064 100644
--- a/content/cluster-installation/hosted-control-plane/tenant-network/ingress-controller-shard.yaml
+++ b/content/cluster-installation/hosted-control-plane/tenant-network/ingress-controller-shard.yaml
@@ -10,8 +10,8 @@ spec:
     type: NodePortService
   namespaceSelector:
     matchExpressions:
-    - key: kubernetes.io/metadata.name
-      operator: In
-      values:
-      - ingress-test
-      - clusters-tenant-a
\ No newline at end of file
+      - key: kubernetes.io/metadata.name
+        operator: In
+        values:
+          - ingress-test
+          - clusters-tenant-a

From 13e528bea43c449b0f6983542c9dfe598d1cf6aa Mon Sep 17 00:00:00 2001
From: Robert Bohne <robert.bohne@redhat.com>
Date: Mon, 4 May 2026 13:05:28 +0200
Subject: [PATCH 4/4] Added igress lb

---
 .../tenant-network/detail.drawio              | 187 ------------------
 .../tenant-network/index.md                   |  33 +++-
 .../tenant-network/ingress-lb.conf            |  34 ++++
 3 files changed, 61 insertions(+), 193 deletions(-)
 delete mode 100644 content/cluster-installation/hosted-control-plane/tenant-network/detail.drawio
 create mode 100644 content/cluster-installation/hosted-control-plane/tenant-network/ingress-lb.conf

diff --git a/content/cluster-installation/hosted-control-plane/tenant-network/detail.drawio b/content/cluster-installation/hosted-control-plane/tenant-network/detail.drawio
deleted file mode 100644
index 8057f4e0..00000000
--- a/content/cluster-installation/hosted-control-plane/tenant-network/detail.drawio
+++ /dev/null
@@ -1,187 +0,0 @@
-<mxfile host="Electron">
-  <diagram name="Page-1" id="YXbzoI76saGIsczbTkJC">
-    <mxGraphModel dx="1188" dy="1185" grid="1" gridSize="10" guides="1" tooltips="1" connect="1" arrows="1" fold="1" page="1" pageScale="1" pageWidth="1169" pageHeight="827" math="0" shadow="0">
-      <root>
-        <mxCell id="0" />
-        <mxCell id="1" parent="0" />
-        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-8" parent="1" style="rounded=0;whiteSpace=wrap;html=1;align=left;verticalAlign=top;fontStyle=1" value="&lt;b&gt;&lt;font style=&quot;font-size: 18px;&quot;&gt;OpenShift Hub Cluster&lt;/font&gt;&lt;/b&gt;" vertex="1">
-          <mxGeometry height="390" width="470" x="80" y="150" as="geometry" />
-        </mxCell>
-        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-19" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#e1d5e7;strokeColor=#9673a6;align=center;verticalAlign=top;fontStyle=1" value="&lt;font face=&quot;Arial, sans-serif&quot;&gt;&lt;span style=&quot;white-space-collapse: preserve;&quot;&gt;hosted control plane namespace&lt;/span&gt;&lt;/font&gt;" vertex="1">
-          <mxGeometry height="220" width="430" x="110" y="180" as="geometry" />
-        </mxCell>
-        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-3" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fillColor=#d5e8d4;strokeColor=#82b366;align=left;points=[[0,0,0,0,0],[0,0.25,0,0,0],[0,0.5,0,0,0],[0,0.75,0,0,0],[0,1,0,0,0],[0.04,0,0,0,0],[0.08,0,0,0,0],[0.12,0,0,0,0],[0.15,0,0,0,0],[0.19,0,0,0,0],[0.23,0,0,0,0],[0.25,0,0,0,0],[0.25,1,0,0,0],[0.27,0,0,0,0],[0.31,0,0,0,0],[0.35,0,0,0,0],[0.38,0,0,0,0],[0.42,0,0,0,0],[0.46,0,0,0,0],[0.5,0,0,0,0],[0.5,1,0,0,0],[0.54,0,0,0,0],[0.58,0,0,0,0],[0.62,0,0,0,0],[0.65,0,0,0,0],[0.69,0,0,0,0],[0.73,0,0,0,0],[0.75,0,0,0,0],[0.75,1,0,0,0],[0.77,0,0,0,0],[0.81,0,0,0,0],[0.85,0,0,0,0],[0.88,0,0,0,0],[0.92,0,0,0,0],[0.96,0,0,0,0],[1,0,0,0,0],[1,0.25,0,0,0],[1,0.5,0,0,0],[1,0.75,0,0,0],[1,1,0,0,0]];" value="&lt;b style=&quot;font-size: 16px;&quot;&gt;Managment Network Segment&lt;/b&gt;" vertex="1">
-          <mxGeometry height="20" width="1000" x="80" y="590" as="geometry" />
-        </mxCell>
-        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-5" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fillColor=#e1d5e7;strokeColor=#9673a6;points=[[0,0,0,0,0],[0,0.25,0,0,0],[0,0.5,0,0,0],[0,0.75,0,0,0],[0,1,0,0,0],[0.02,1,0,0,0],[0.04,0,0,0,0],[0.04,1,0,0,0],[0.06,1,0,0,0],[0.08,0,0,0,0],[0.08,1,0,0,0],[0.1,1,0,0,0],[0.12,0,0,0,0],[0.12,1,0,0,0],[0.14,1,0,0,0],[0.15,0,0,0,0],[0.16,1,0,0,0],[0.18,1,0,0,0],[0.19,0,0,0,0],[0.2,1,0,0,0],[0.22,1,0,0,0],[0.23,0,0,0,0],[0.24,1,0,0,0],[0.25,0,0,0,0],[0.25,1,0,0,0],[0.27,0,0,0,0],[0.27,1,0,0,0],[0.29,1,0,0,0],[0.31,0,0,0,0],[0.31,1,0,0,0],[0.33,1,0,0,0],[0.35,0,0,0,0],[0.35,1,0,0,0],[0.37,1,0,0,0],[0.38,0,0,0,0],[0.39,1,0,0,0],[0.41,1,0,0,0],[0.42,0,0,0,0],[0.43,1,0,0,0],[0.45,1,0,0,0],[0.46,0,0,0,0],[0.47,1,0,0,0],[0.49,1,0,0,0],[0.5,0,0,0,0],[0.5,1,0,0,0],[0.51,1,0,0,0],[0.53,1,0,0,0],[0.54,0,0,0,0],[0.55,1,0,0,0],[0.57,1,0,0,0],[0.58,0,0,0,0],[0.59,1,0,0,0],[0.61,1,0,0,0],[0.62,0,0,0,0],[0.63,1,0,0,0],[0.65,0,0,0,0],[0.65,1,0,0,0],[0.67,1,0,0,0],[0.69,0,0,0,0],[0.69,1,0,0,0],[0.71,1,0,0,0],[0.73,0,0,0,0],[0.73,1,0,0,0],[0.75,0,0,0,0],[0.75,1,0,0,0],[0.76,1,0,0,0],[0.77,0,0,0,0],[0.78,1,0,0,0],[0.8,1,0,0,0],[0.81,0,0,0,0],[0.82,1,0,0,0],[0.84,1,0,0,0],[0.85,0,0,0,0],[0.86,1,0,0,0],[0.88,0,0,0,0],[0.88,1,0,0,0],[0.9,1,0,0,0],[0.92,0,0,0,0],[0.92,1,0,0,0],[0.94,1,0,0,0],[0.96,0,0,0,0],[0.96,1,0,0,0],[0.98,1,0,0,0],[1,0,0,0,0],[1,0.25,0,0,0],[1,0.5,0,0,0],[1,0.75,0,0,0],[1,1,0,0,0]];align=left;" value="&lt;b&gt;&lt;font style=&quot;font-size: 18px;&quot;&gt;Tenant A Network Segment&lt;/font&gt;&lt;/b&gt;" vertex="1">
-          <mxGeometry height="20" width="830" x="250" y="110" as="geometry" />
-        </mxCell>
-        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-9" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#ffe6cc;strokeColor=#d79b00;" value="External &lt;br&gt;Load Balancer" vertex="1">
-          <mxGeometry height="35" width="120" x="690" y="240" as="geometry" />
-        </mxCell>
-        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-10" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;" value="APIServer" vertex="1">
-          <mxGeometry height="30" width="120" x="410" y="240" as="geometry" />
-        </mxCell>
-        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-15" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-10" style="endArrow=none;dashed=1;html=1;dashPattern=1 3;strokeWidth=2;rounded=0;entryX=0;entryY=0.5;entryDx=0;entryDy=0;exitX=1;exitY=0.5;exitDx=0;exitDy=0;" target="B_gBxwrZvkmkuxEVv0Sx-9" value="">
-          <mxGeometry height="50" relative="1" width="50" as="geometry">
-            <mxPoint x="330" y="530" as="sourcePoint" />
-            <mxPoint x="380" y="480" as="targetPoint" />
-          </mxGeometry>
-        </mxCell>
-        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-16" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-9" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#d5e8d4;strokeColor=#82b366;exitX=0.25;exitY=1;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.62;entryY=0;entryDx=0;entryDy=0;entryPerimeter=0;" target="B_gBxwrZvkmkuxEVv0Sx-3" value="">
-          <mxGeometry height="50" relative="1" width="50" as="geometry">
-            <mxPoint x="150" y="550" as="sourcePoint" />
-            <mxPoint x="690" y="660" as="targetPoint" />
-          </mxGeometry>
-        </mxCell>
-        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-17" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-9" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#e1d5e7;strokeColor=#9673a6;exitX=0.25;exitY=0;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.5;entryY=1;entryDx=0;entryDy=0;entryPerimeter=0;" target="B_gBxwrZvkmkuxEVv0Sx-5" value="">
-          <mxGeometry height="50" relative="1" width="50" as="geometry">
-            <mxPoint x="570" y="620" as="sourcePoint" />
-            <mxPoint x="760" y="620" as="targetPoint" />
-          </mxGeometry>
-        </mxCell>
-        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-18" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;" value="&lt;span id=&quot;docs-internal-guid-aa7dbe45-7fff-f4de-7713-e002c688d2cc&quot;&gt;&lt;span style=&quot;font-family: Arial, sans-serif; background-color: transparent; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; font-variant-emoji: normal; vertical-align: baseline; white-space-collapse: preserve;&quot;&gt;Ignition&lt;/span&gt;&lt;/span&gt;" vertex="1">
-          <mxGeometry height="30" width="80" x="305" y="360" as="geometry" />
-        </mxCell>
-        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-26" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-21" style="endArrow=none;dashed=1;html=1;dashPattern=1 3;strokeWidth=2;rounded=0;entryX=0;entryY=0.5;entryDx=0;entryDy=0;exitX=1;exitY=0.5;exitDx=0;exitDy=0;" target="B_gBxwrZvkmkuxEVv0Sx-23" value="">
-          <mxGeometry height="50" relative="1" width="50" as="geometry">
-            <mxPoint x="560" y="230" as="sourcePoint" />
-            <mxPoint x="630" y="230" as="targetPoint" />
-          </mxGeometry>
-        </mxCell>
-        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-27" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-21" style="endArrow=none;dashed=1;html=1;dashPattern=1 3;strokeWidth=2;rounded=0;entryX=1;entryY=0.5;entryDx=0;entryDy=0;exitX=0.5;exitY=0;exitDx=0;exitDy=0;" target="B_gBxwrZvkmkuxEVv0Sx-18" value="">
-          <mxGeometry height="50" relative="1" width="50" as="geometry">
-            <mxPoint x="510" y="490" as="sourcePoint" />
-            <mxPoint x="650" y="480" as="targetPoint" />
-          </mxGeometry>
-        </mxCell>
-        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-28" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-21" style="endArrow=none;dashed=1;html=1;dashPattern=1 3;strokeWidth=2;rounded=0;entryX=0;entryY=0.5;entryDx=0;entryDy=0;exitX=0.5;exitY=0;exitDx=0;exitDy=0;" target="B_gBxwrZvkmkuxEVv0Sx-13" value="">
-          <mxGeometry height="50" relative="1" width="50" as="geometry">
-            <mxPoint x="690" y="540" as="sourcePoint" />
-            <mxPoint x="570" y="470" as="targetPoint" />
-          </mxGeometry>
-        </mxCell>
-        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-29" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-21" style="endArrow=none;dashed=1;html=1;dashPattern=1 3;strokeWidth=2;rounded=0;entryX=0;entryY=0.5;entryDx=0;entryDy=0;exitX=0.5;exitY=0;exitDx=0;exitDy=0;" target="B_gBxwrZvkmkuxEVv0Sx-12" value="">
-          <mxGeometry height="50" relative="1" width="50" as="geometry">
-            <mxPoint x="390" y="460" as="sourcePoint" />
-            <mxPoint x="480" y="430" as="targetPoint" />
-          </mxGeometry>
-        </mxCell>
-        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-30" parent="1" style="rounded=0;whiteSpace=wrap;html=1;align=left;fontFamily=Helvetica;fontStyle=0;fillColor=#1ba1e2;fontColor=#ffffff;strokeColor=#006EAF;" value="DNS: api.tenant-a.coe.muc.redhat.com&lt;div&gt;IP:&amp;nbsp; &amp;nbsp; &amp;nbsp;192.168.203.10&lt;/div&gt;" vertex="1">
-          <mxGeometry height="40" width="220" x="780" y="205" as="geometry" />
-        </mxCell>
-        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-32" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#0050ef;fontColor=#ffffff;strokeColor=#001DBC;" value="Worker VM 1" vertex="1">
-          <mxGeometry height="30" width="120" x="120" y="220" as="geometry" />
-        </mxCell>
-        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-33" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#0050ef;fontColor=#ffffff;strokeColor=#001DBC;" value="Worker VM 2" vertex="1">
-          <mxGeometry height="30" width="120" x="255" y="220" as="geometry" />
-        </mxCell>
-        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-34" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-33" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#e1d5e7;strokeColor=#9673a6;exitX=0.75;exitY=0;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.1;entryY=1;entryDx=0;entryDy=0;entryPerimeter=0;" target="B_gBxwrZvkmkuxEVv0Sx-5" value="">
-          <mxGeometry height="50" relative="1" width="50" as="geometry">
-            <mxPoint x="730" y="540" as="sourcePoint" />
-            <mxPoint x="480" y="620" as="targetPoint" />
-          </mxGeometry>
-        </mxCell>
-        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-12" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;" value="OAuthServer" vertex="1">
-          <mxGeometry height="30" width="120" x="410" y="320" as="geometry" />
-        </mxCell>
-        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-35" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-32" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#e1d5e7;strokeColor=#9673a6;startArrow=oval;startFill=1;endFill=1;entryX=0.04;entryY=1;entryDx=0;entryDy=0;entryPerimeter=0;" target="B_gBxwrZvkmkuxEVv0Sx-5" value="">
-          <mxGeometry height="50" relative="1" width="50" as="geometry">
-            <mxPoint x="470" y="580" as="sourcePoint" />
-            <mxPoint x="140" y="600" as="targetPoint" />
-          </mxGeometry>
-        </mxCell>
-        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-13" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;" value="&lt;span id=&quot;docs-internal-guid-44e9e855-7fff-e21b-1846-7dce005654dc&quot;&gt;&lt;span style=&quot;font-family: Arial, sans-serif; background-color: transparent; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; font-variant-emoji: normal; vertical-align: baseline; white-space-collapse: preserve;&quot;&gt;Konnectivity&lt;/span&gt;&lt;/span&gt;" vertex="1">
-          <mxGeometry height="30" width="120" x="410" y="360" as="geometry" />
-        </mxCell>
-        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-21" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;" value="&lt;span id=&quot;docs-internal-guid-aa7dbe45-7fff-f4de-7713-e002c688d2cc&quot;&gt;&lt;span style=&quot;font-family: Arial, sans-serif; background-color: transparent; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; font-variant-emoji: normal; vertical-align: baseline; white-space-collapse: preserve;&quot;&gt;Router/Ingress&lt;/span&gt;&lt;/span&gt;&lt;div&gt;&lt;span&gt;&lt;span style=&quot;font-family: Arial, sans-serif; background-color: transparent; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; font-variant-emoji: normal; vertical-align: baseline; white-space-collapse: preserve;&quot;&gt; Shard&lt;/span&gt;&lt;/span&gt;&lt;/div&gt;&lt;div&gt;&lt;span&gt;&lt;span style=&quot;font-family: Arial, sans-serif; background-color: transparent; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; font-variant-emoji: normal; vertical-align: baseline; white-space-collapse: preserve;&quot;&gt;for tentant a&lt;/span&gt;&lt;/span&gt;&lt;/div&gt;" vertex="1">
-          <mxGeometry height="60" width="120" x="385" y="450" as="geometry" />
-        </mxCell>
-        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-36" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#ffe6cc;strokeColor=#d79b00;" value="External &lt;br&gt;Load Balancer" vertex="1">
-          <mxGeometry height="40" width="110" x="585" y="290" as="geometry" />
-        </mxCell>
-        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-37" parent="1" style="rounded=0;whiteSpace=wrap;html=1;align=left;fontFamily=Helvetica;fontStyle=0;fillColor=#1ba1e2;fontColor=#ffffff;strokeColor=#006EAF;" value="DNS:&amp;nbsp;&lt;span style=&quot;background-color: transparent; color: light-dark(rgb(255, 255, 255), rgb(18, 18, 18));&quot;&gt;*.apps.tenant-a.coe.muc.redhat.com&lt;/span&gt;&lt;div&gt;&lt;div&gt;&lt;span style=&quot;background-color: transparent; color: light-dark(rgb(255, 255, 255), rgb(18, 18, 18));&quot;&gt;IP:&amp;nbsp; &amp;nbsp; &amp;nbsp;192.168.203.12&lt;/span&gt;&lt;/div&gt;&lt;/div&gt;" vertex="1">
-          <mxGeometry height="50" width="290" x="660" y="320" as="geometry" />
-        </mxCell>
-        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-39" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-36" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#e1d5e7;strokeColor=#9673a6;exitX=0.5;exitY=0;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.39;entryY=1.1;entryDx=0;entryDy=0;entryPerimeter=0;" target="B_gBxwrZvkmkuxEVv0Sx-5" value="">
-          <mxGeometry height="50" relative="1" width="50" as="geometry">
-            <mxPoint x="730" y="530" as="sourcePoint" />
-            <mxPoint x="845" y="610" as="targetPoint" />
-          </mxGeometry>
-        </mxCell>
-        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-40" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-42" style="endArrow=none;dashed=1;html=1;dashPattern=1 3;strokeWidth=2;rounded=0;entryX=0;entryY=0.5;entryDx=0;entryDy=0;exitX=1;exitY=0.5;exitDx=0;exitDy=0;" target="B_gBxwrZvkmkuxEVv0Sx-36" value="">
-          <mxGeometry height="50" relative="1" width="50" as="geometry">
-            <mxPoint x="720" y="350" as="sourcePoint" />
-            <mxPoint x="534" y="410" as="targetPoint" />
-          </mxGeometry>
-        </mxCell>
-        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-41" parent="1" style="rounded=0;whiteSpace=wrap;html=1;align=left;verticalAlign=top;" value="OpenShift - Tenant A" vertex="1">
-          <mxGeometry height="75" width="170" x="155" y="245" as="geometry" />
-        </mxCell>
-        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-42" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;" value="&lt;span id=&quot;docs-internal-guid-44e9e855-7fff-e21b-1846-7dce005654dc&quot;&gt;&lt;span style=&quot;font-family: Arial, sans-serif; background-color: transparent; font-variant-numeric: normal; font-variant-east-asian: normal; font-variant-alternates: normal; font-variant-position: normal; font-variant-emoji: normal; vertical-align: baseline; white-space-collapse: preserve;&quot;&gt;Default Ingress&lt;/span&gt;&lt;/span&gt;" vertex="1">
-          <mxGeometry height="30" width="120" x="185" y="280" as="geometry" />
-        </mxCell>
-        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-23" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#ffe6cc;strokeColor=#d79b00;" value="External &lt;br&gt;Load Balancer&lt;div&gt;(ingress-shared-lb)&lt;/div&gt;" vertex="1">
-          <mxGeometry height="50" width="120" x="570" y="389" as="geometry" />
-        </mxCell>
-        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-24" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-23" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#d5e8d4;strokeColor=#82b366;exitX=0.25;exitY=1;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.5;entryY=0;entryDx=0;entryDy=0;entryPerimeter=0;" target="B_gBxwrZvkmkuxEVv0Sx-3" value="">
-          <mxGeometry height="50" relative="1" width="50" as="geometry">
-            <mxPoint x="680" y="620" as="sourcePoint" />
-            <mxPoint x="620" y="660" as="targetPoint" />
-          </mxGeometry>
-        </mxCell>
-        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-25" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-23" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#e1d5e7;strokeColor=#9673a6;exitX=0.25;exitY=0;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.35;entryY=1;entryDx=0;entryDy=0;entryPerimeter=0;" target="B_gBxwrZvkmkuxEVv0Sx-5" value="">
-          <mxGeometry height="50" relative="1" width="50" as="geometry">
-            <mxPoint x="750" y="600" as="sourcePoint" />
-            <mxPoint x="650" y="660" as="targetPoint" />
-          </mxGeometry>
-        </mxCell>
-        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-49" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#0050ef;fontColor=#ffffff;strokeColor=#001DBC;" value="Worker BareMetal" vertex="1">
-          <mxGeometry height="30" width="120" x="130" y="530" as="geometry" />
-        </mxCell>
-        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-50" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#0050ef;fontColor=#ffffff;strokeColor=#001DBC;" value="Worker BareMetal" vertex="1">
-          <mxGeometry height="30" width="120" x="265" y="530" as="geometry" />
-        </mxCell>
-        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-51" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#0050ef;fontColor=#ffffff;strokeColor=#001DBC;" value="Worker BareMetal" vertex="1">
-          <mxGeometry height="30" width="120" x="400" y="530" as="geometry" />
-        </mxCell>
-        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-52" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-51" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#d5e8d4;strokeColor=#82b366;exitX=0.5;exitY=1;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.38;entryY=0;entryDx=0;entryDy=0;entryPerimeter=0;" target="B_gBxwrZvkmkuxEVv0Sx-3" value="">
-          <mxGeometry height="50" relative="1" width="50" as="geometry">
-            <mxPoint x="610" y="590" as="sourcePoint" />
-            <mxPoint x="570" y="720" as="targetPoint" />
-          </mxGeometry>
-        </mxCell>
-        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-53" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-50" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#d5e8d4;strokeColor=#82b366;exitX=0.5;exitY=1;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.25;entryY=0;entryDx=0;entryDy=0;entryPerimeter=0;" target="B_gBxwrZvkmkuxEVv0Sx-3" value="">
-          <mxGeometry height="50" relative="1" width="50" as="geometry">
-            <mxPoint x="470" y="640" as="sourcePoint" />
-            <mxPoint x="485" y="730" as="targetPoint" />
-          </mxGeometry>
-        </mxCell>
-        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-54" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-49" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#d5e8d4;strokeColor=#82b366;exitX=0.5;exitY=1;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.12;entryY=0;entryDx=0;entryDy=0;entryPerimeter=0;" target="B_gBxwrZvkmkuxEVv0Sx-3" value="">
-          <mxGeometry height="50" relative="1" width="50" as="geometry">
-            <mxPoint x="270" y="620" as="sourcePoint" />
-            <mxPoint x="260" y="710" as="targetPoint" />
-          </mxGeometry>
-        </mxCell>
-        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-55" parent="1" style="rounded=0;whiteSpace=wrap;html=1;fontSize=12;fillColor=#ffe6cc;strokeColor=#d79b00;" value="VyOS&lt;div&gt;router-2003&lt;/div&gt;" vertex="1">
-          <mxGeometry height="50" width="90" x="996" y="430" as="geometry" />
-        </mxCell>
-        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-56" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-55" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#d5e8d4;strokeColor=#82b366;exitX=0.5;exitY=1;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.96;entryY=0;entryDx=0;entryDy=0;entryPerimeter=0;" target="B_gBxwrZvkmkuxEVv0Sx-3" value="">
-          <mxGeometry height="50" relative="1" width="50" as="geometry">
-            <mxPoint x="720" y="540" as="sourcePoint" />
-            <mxPoint x="700" y="855" as="targetPoint" />
-          </mxGeometry>
-        </mxCell>
-        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-57" edge="1" parent="1" source="B_gBxwrZvkmkuxEVv0Sx-55" style="endArrow=oval;html=1;rounded=0;strokeWidth=5;fillColor=#e1d5e7;strokeColor=#9673a6;exitX=0.5;exitY=0;exitDx=0;exitDy=0;startArrow=oval;startFill=1;endFill=1;entryX=0.96;entryY=1;entryDx=0;entryDy=0;entryPerimeter=0;" target="B_gBxwrZvkmkuxEVv0Sx-5" value="">
-          <mxGeometry height="50" relative="1" width="50" as="geometry">
-            <mxPoint x="735" y="260" as="sourcePoint" />
-            <mxPoint x="680" y="150" as="targetPoint" />
-          </mxGeometry>
-        </mxCell>
-        <mxCell id="B_gBxwrZvkmkuxEVv0Sx-31" parent="1" style="rounded=0;whiteSpace=wrap;html=1;align=left;fontFamily=Helvetica;fontStyle=0;fillColor=#1ba1e2;fontColor=#ffffff;strokeColor=#006EAF;" value="DNS:&amp;nbsp;&lt;div&gt;- konnectivity.tenant-a.coe.muc.redhat.com&lt;div&gt;- oauth.&lt;span style=&quot;background-color: transparent; color: light-dark(rgb(255, 255, 255), rgb(18, 18, 18));&quot;&gt;tenant-a.coe.muc.redhat.com&lt;/span&gt;&lt;/div&gt;&lt;div&gt;&lt;span style=&quot;background-color: transparent; color: light-dark(rgb(255, 255, 255), rgb(18, 18, 18));&quot;&gt;- ignition.tenant-a.coe.muc.redhat.com&lt;/span&gt;&lt;/div&gt;&lt;div&gt;IP:&amp;nbsp; &amp;nbsp; &amp;nbsp;192.168.203.111&lt;/div&gt;&lt;/div&gt;" vertex="1">
-          <mxGeometry height="70" width="290" x="650" y="420" as="geometry" />
-        </mxCell>
-      </root>
-    </mxGraphModel>
-  </diagram>
-</mxfile>
diff --git a/content/cluster-installation/hosted-control-plane/tenant-network/index.md b/content/cluster-installation/hosted-control-plane/tenant-network/index.md
index 4d7b7979..8326ff68 100644
--- a/content/cluster-installation/hosted-control-plane/tenant-network/index.md
+++ b/content/cluster-installation/hosted-control-plane/tenant-network/index.md
@@ -15,6 +15,12 @@ Tested with:
 |OpenShift|v4.21.9|
 |OpenShift Virt|v4.21.0|
 
+## ToDo's
+
+* Add custom endpointpublishing strategy
+* Find a solution for the nodeport chicken egg problem of external api load balancer
+* Check WebUI bug: Ingress domain is wrong.
+
 ## Overview
 
 Challenge: running an hosted cluster with in different tenant network segment/vlan without widely open access from tenant segment to managment segment.
@@ -60,7 +66,7 @@ In front of the router/ingress shared is an external load balancer (for example,
 
 ### Router between Mgmt and Tenant-A
 
-[VyOS Router](https://vyos.io/) router & firewall. Do not allow Traffic between Mgmt and Tenant-A network except DNS and gateway.
+[VyOS Router](https://vyos.io/) router & firewall. Do not allow Traffic between Mgmt and Tenant-A network except DNS and gateway. To provde direct internect connection.
 
 ??? example "VyOS config commands"
 
@@ -106,12 +112,9 @@ oauth.tenant-a.coe.muc.redhat.com.              IN A 192.168.203.111
 ignition.tenant-a.coe.muc.redhat.com.           IN A 192.168.203.111
 ```
 
+### Start hosted control plane and nodepool
+
 ```yaml
-apiVersion: project.openshift.io/v1
-kind: Project
-metadata:
-  name: 'clusters'
----
 apiVersion: hypershift.openshift.io/v1beta1
 kind: HostedCluster
 metadata:
@@ -178,6 +181,9 @@ spec:
         type: Route
         route:
           hostname: ignition.tenant-a.coe.muc.redhat.com
+```
+
+```yaml
 ---
 apiVersion: hypershift.openshift.io/v1beta1
 kind: NodePool
@@ -207,3 +213,18 @@ spec:
   release:
     image: quay.io/openshift-release-dev/ocp-release:4.21.11-multi
 ```
+
+### Deploy external load balancer for ingress of hosted cluster
+
+Ingress sharding load balancer is an RHEL 9 system with haproxy.
+
+* Install HAProxy `dnf install haproxy`
+* Configure selinux `setsebool -P haproxy_connect_any 1`
+* Apply Example haproxy.conf (don't forget to update ports)
+* Enabel and start haproxy `systemctl enable --now haproxy`
+
+??? example "HAProxy config"
+
+    ```shell
+    --8<-- "content/cluster-installation/hosted-control-plane/tenant-network/ingress-lb.conf"
+    ```
diff --git a/content/cluster-installation/hosted-control-plane/tenant-network/ingress-lb.conf b/content/cluster-installation/hosted-control-plane/tenant-network/ingress-lb.conf
new file mode 100644
index 00000000..518833e1
--- /dev/null
+++ b/content/cluster-installation/hosted-control-plane/tenant-network/ingress-lb.conf
@@ -0,0 +1,34 @@
+global
+  log         127.0.0.1 local2
+  pidfile     /var/run/haproxy.pid
+  maxconn     4000
+  daemon
+defaults
+  mode                    http
+  log                     global
+  option                  dontlognull
+  option http-server-close
+  option                  redispatch
+  retries                 3
+  timeout http-request    10s
+  timeout queue           1m
+  timeout connect         10s
+  timeout client          1m
+  timeout server          1m
+  timeout http-keep-alive 10s
+  timeout check           10s
+  maxconn                 3000
+
+listen ingress-router-443
+  bind *:443
+  mode tcp
+  balance source
+  server tenant-a-gngj5-mfwp6 192.168.203.101:30190 check inter 1s
+  server tenant-a-gngj5-rrbmv 192.168.203.102:30190 check inter 1s        
+
+listen ingress-router-80
+  bind *:80
+  mode tcp
+  balance source
+  server tenant-a-gngj5-mfwp6 192.168.203.101:30282 check inter 1s
+  server tenant-a-gngj5-rrbmv 192.168.203.102:30282 check inter 1s