Stack Overflow
Stack Overflow

Questions tagged [istio-sidecar]

196 questions
0
votes
1 answer

Using an AuthorizationPolicy causes a 503 error

When using an AuthorizationPolicy, I came across a 503 error trying to access the application. The error seems to be between the gateway and the service, but traffic never reaches the service. For instance, when using this policy to allow all…
ross
  • 11
  • 3
0
votes
1 answer

Routing traffic between namespace without Istio to namespace with Istio

In my cluster I have multiple namespaces. All my 1st-party services are running in one namespace and all 3rd-party services are running in their own namespaces. I have Istio enabled on my 1st-party namespace (let’s call it ns-1 ). Istio is not…
RandomQuests
  • 635
  • 4
  • 16
0
votes
2 answers

How can I access Istio Authorization details in my target Service(For e.g. Flask code)

For Example I have enabled the mTLS in my istio service in STRICT mode. and I have authorization policy that have kind of source.principals rule check. Now I want to access these rules details like source.principals and source.namespace after…
Deepak Verma
  • 653
  • 1
  • 10
  • 24
0
votes
1 answer

getting 404 error for my service while exposing through istio ingress gateway

I deployed istio in my aks cluster using enter link description here, exposed istio sample applications(product_page,)through istio gatewayservice, it worked fine as expected, but when I exposed my service, showing 404 error. Here is my…
harish hari
  • 93
  • 9
0
votes
1 answer

Enabled Istio sidecar injection automatically without labelling the namespace

I have scenario where I need to inject istio-side into the workload without labelling the namespace. Reason I can't label the namespace is because in my cluster the namespace are created via an automated process and currently I can't change that…
Kunal Malhotra
  • 493
  • 1
  • 5
  • 17
0
votes
1 answer

Pod unable to access configmap when Istio sidecar container is injected

Error while getting config map appconfig Get "https://xxx.xx.x.x:443/api/v1/namespaces/app/configmaps/appconfig": dial tcp xxx.xx.x.x:443: connect: connection refused" But when istio sidecar is not injected, there is no error
kr_devops
  • 117
  • 3
  • 14
0
votes
0 answers

Getting "no healthy upstream" after renaming the service at eks clster

Created and deployed application at eks cluster. Istio configured on cluster. API was working fine. Later renamed the virtual service, then getting no healthy upstream. What would be the issue with istio-proxy ?
Sivakumar
  • 1,089
  • 1
  • 13
  • 24
0
votes
1 answer

Not working Godady CA certs using Plug in certificates and key into the cluster in the ISTIO

I have started working on istio implementation and able to see some progress. Have got few doubts and I see myself missing something in the documentation.... Currently, I am using a gateway, virtual service, destination rules, authorization services…
Madhusudhan G Revankar
  • 29
  • 16
0
votes
1 answer

Multiple Istio Request Authentication Policies

According to the Istio security doc: "Request authentication policies can specify more than one JWT if each uses a unique location. When more than one policy matches a workload, Istio combines all rules as if they were specified as a single policy.…
YoungStud666
  • 1
  • 1
0
votes
0 answers

Prometheus target is down with server returned HTTP status 504 Gateway Timeout

We have a setup like this: elasticsearch <----> istio-proxy sidecar | elasticsearch-exporter (es-exporter) | istio-proxy sidecar <------> prometheus All services are running within an EKS cluster. Istio version - 1.4.10. Since, huge amount of data…
Sharat Naik
  • 67
  • 8
0
votes
1 answer

Access external endpoints based on istio ServiceEntry name?

I am currently checking whether we can able to connect the external endpoint based on the serviceentry name to allow us to easily switch the hosts configured in the serviceentry. Below is the current config I am using and also enabled…
SimbuStar
  • 623
  • 1
  • 7
  • 18
0
votes
1 answer

Istio Ingress Serving Blank Page does not rendering content

Getting blank page instead of content while using istio gateway and VirtualService. The webpage is loading with port forwarding but but not with istio-ingress & Virtual services.
Hardik Panchal
  • 62
  • 4
0
votes
1 answer

Does istio proxy manipulate headers of incoming/outgoing requests by default?

With default configurations, does istio-proxy(sidecar) manipulate incoming/outgoing requests from the application container?
RMNull
  • 149
  • 3
  • 12
0
votes
1 answer

EnvoyFilter WASM (C++) - reading container's environment variables

In an EnvoyFilter WASM (C++) I need to read the Envoy container's ENVIRONMENT VARIABLES. I tried to use "environ_get" as mentioned here: https://github.com/envoyproxy/envoy/issues/14958 but the Bazel compilation fails. Which is the correct way for…
mark009
  • 33
  • 4
0
votes
1 answer

Pod to Pod communication based on subset/label by istio

I have 4 micro-service. Only service-1 has two deployments behind it, so there has two pods behind service-1. You can call it blue green deployment. Other three services has one deployment and one pod. If I want to sent external traffic to…
Yeahia Md Abid
  • 184
  • 1
  • 11
1 2 3
12 13