Stack Overflow
Stack Overflow

Questions tagged [envoyproxy]

Use this tag for questions about the Envoy xDS APIs or Envoy internals.

Envoy is an L7 proxy and communication bus designed for large modern service oriented architectures. The project was born out of the belief that:

The network should be transparent to applications. When network and application problems do occur it should be easy to determine the source of the problem.

Envoy is hosted by the Cloud Native Computing Foundation (CNCF). If you are a company that wants to help shape the evolution of technologies that are container-packaged, dynamically-scheduled and microservices-oriented, consider joining the CNCF. For details about who's involved and how Envoy plays a role, read the CNCF announcement.

For official documentation, head to https://www.envoyproxy.io/

To get in touch with the envoy community, please see the contacts list.

823 questions
0
votes
1 answer

What is service_port used for in Ambassador

I was under the impression that service_port was used to dictate which port envoy listens on its public ip. That doesn't seem to be the case since as a non-root user, the ingress controller is listening on 80.
Programmer9000
  • 1,959
  • 3
  • 17
  • 27
0
votes
1 answer

Istio to outside cluster communication issue

In my setup we send all the calls going out of cluster to an Internal Load Balancer in GCP. We do this by creating a egress service and manually adding endpoints to this service. The endpoint to this service is the IP of the Internal load balancer.…
Stunn3r
  • 53
  • 1
  • 12
0
votes
0 answers

503 Service Unavailable with ambassador QOTM service

I have a kubernetes master/node setup in cent os. After setting up ambassador as an API gateway, I have tried a sample route with QOTM service for which when I send a http request to the route, I receive 503 Service unavailable in the response with…
Sony Joseph
  • 189
  • 2
  • 13
0
votes
2 answers

ISTIO allow all outbound traffic to a DOMAIN

Similiar to this topic I need to allow all traffic NOT to IP, but to a domain. The domain I want to access is google API https://www.google.com/recaptcha/api/siteverify Any ideas?
Danny
  • 147
  • 1
  • 13
0
votes
1 answer

{ambassador ingress} Not able to use canary and add_request_headers in the same Mapping

I want to pass a few custom headers to a canary service. On adding both the mappings to the template, it is disregarding the weight and adding the header to 100% of the traffic and routing them to the canary service. Below is my ambassador service…
Smruti Mandal
  • 355
  • 1
  • 2
  • 20
0
votes
1 answer

404 hitting `metadata.google.internal` from K8s pod with Istio

We have an app that we are trying to move into Istio mesh. One of the services makes requests to metadata.google.internal in order to finish configuring the environment. I created ServiceEntry type object to whitelist metadata.google.internal, as…
suren
  • 7,817
  • 1
  • 30
  • 51
0
votes
2 answers

Envoy Pod to Pod communication within a Service in K8

Is it possible to send a http Rest request to another K8 Pod that belongs to the same Service in Kubernetes when Envoy is configured? Important : I have another question here that directed me to ask with Envoy specific tags. E. G. Service name =…
M_K
  • 3,247
  • 6
  • 30
  • 47
0
votes
1 answer

Service a static website using Kubernetes and Ambassador

I have a static website bundle I want to serve on my cluster. The bundle is stored in a google cloud storage bucket, which makes me think I may not actually need a separate "server" to return the files. I have been able to get Python-Flask to…
mstorkson
  • 1,130
  • 1
  • 10
  • 26
0
votes
1 answer

how to build envoy binary without CI?

I only want to build envoy. It seems like x./ci/run_envoy_docker.sh './ci/do_ci.sh bazel.dev' will also run CI. How can I only compiled and build the binary?
Haoyuan Ge
  • 3,379
  • 3
  • 24
  • 40
0
votes
2 answers

bazel select help -- configuring tcmalloc debug

a project I'm working on -- Envoy proxy -- uses Bazel and tcmalloc. I'd like to configure it to use the debug version of tcmalloc when compiling for debug and fastbuild, and use the optimized one for optimized builds. There are other conditions as…
Joshua Marantz
  • 166
  • 4
0
votes
1 answer

Istio egress gives "upstream connect error or disconnect/reset before headers" errors from python micro-service

When I am running a Python micro-service in a dockerized or kubernetes container it works just fine. But with Istio service mesh, it is not working. I have added ServiceEntry for two of my outbound external http apis. It seems I can access the url…
rayhan
  • 636
  • 3
  • 9
  • 26
0
votes
1 answer

Circuit Breaker envoy proxy

I am going to setup an envoy proxy, but still confused about the Circuit Breaker. For example: max_connections (UInt32Value) is the maximum number of connections that Envoy will make to the upstream cluster. If not specified, the default is…
Hiếu Nguyễn
  • 1
  • 1
0
votes
1 answer

Invoke a service from a multi container pod with a Istio sidecar

I have two pods with two containers. In each pod, one container is the Istio sidecar-proxy (Envoy) $ kubectl get pods NAME READY STATUS RESTARTS AGE helloserver-744bf7487-m426t 2/2 Running …
user9898610
0
votes
1 answer

Configuring Istio, Kubernetes and MetalLB to use a Istio LoadBalancer

I’m struggling with the last step of a configuration using MetalLB, Kubernetes, Istio on a bare-metal instance, and that is to have a web page returned from a service to the outside world via an Istio VirtualService route. I’ve just updated the…
sturmstrike
  • 587
  • 1
  • 7
  • 15
0
votes
1 answer

Unable to reach an external mongo db server from istio

I am trying to implement service mesh using istio and envoy for a service which requires connecting to external mongodB server but for some reasons, my service is unable to reach the external mongodB server from istio proxy Below is the gateway and…
DoIt
  • 3,270
  • 9
  • 51
  • 103
1 2 3
54 55