Replies: 1 comment
-
can you try using this object instead?
|
Beta Was this translation helpful? Give feedback.
0 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
Hello all, we are trying to create an ingress gateway that will be called by other pod in mesh with this flow:
cloudflared/cli pod -> istio mutual TLS to ingress gateway -> istio mutual TLS to other pods based on our routing
Our ingress gateway, cloudflared and other upstream pods are in the same namespace (non istio system).
We try to set up cloudflared/cli pod to call to port 8082 of ingress gateway and add virtual service + destination rule to redirect to port 443 with istio mutual.
our gateway service:
gateway CRD:
ingress gw destination rule:
virtual service from port 8082 from another pod:
virtual service from gateway to other pods:
I also noticed that our ingress gateway only have 1 listener which is the HTTP 8082 but not the port 443.
when I try to call from cli pod and check from kiali it still go through the passThroughCluster instead istio mtls via port 443
our istio version is:
client version: 1.19.0
control plane version: 1.18.7
data plane version: 1.18.7 (62 proxies)
Beta Was this translation helpful? Give feedback.
All reactions