Highest Voted 'istio-sidecar' Questions

0

votes

1 answer

Istio service to service traffic encryption

Scenario: Within 1 Azure Kubernetes Service (AKS), there are 2 .NET services running: Service1 and Service2 Both Service1 and Service2 listen on HTTP:80 and HTTPS:443 Both services run Istio and Istio proxy To ensure traffic encryption between…

istio istio-sidecar

asked Apr 02 '21 at 06:01

Lydon Ch

8,637
20
79
132

0

votes

1 answer

Is it possible to communicate between workload with envoy proxy and another workload without envoy proxy in the same namespace?

I'm a newer of istio. As like title, i deployed a pod injected envoy sidecar and a pod without envoy in the same namespace. when i try to access from a pod without envoy to a pod with enovy, it is nothing progressed as like being blocked. To access…

istio istio-sidecar

asked Mar 31 '21 at 02:54

aspirant75

127
1
2
10

0

votes

1 answer

k8s, Istio: remove transfer-encoding header

In application's responses we see doubled transfer-encoding headers. Suppose, because of that we get 503 in UI, but at the same time application returns 201 in pod's logs. Except http code: 201 there are transfer-encoding=chunked and…

kubernetes istio istio-sidecar

asked Mar 19 '21 at 14:42

Eugene G

11
4

0

votes

2 answers

Istio Sidecar to retry on specified status codes (503)

By default, if we don't define any VirtualService, Istio will generate something like the following Envoy route/retry configuration: { "cluster": "outbound|9100||quote-svc-cip.quote.svc.cluster.local", "timeout": "0s", "retry_policy": { …

istio envoyproxy istio-sidecar

asked Feb 24 '21 at 05:51

Edward Samuel

3,846
1
22
39

0

votes

0 answers

with envoy, what is different between using cluster IP and fqdn for adress of proxy_pass in nginx?

I am trying to test Istio 1.9 on Kubernetes 1.20.2 (on premise) First of all, when Nginx proxy_pass has fqdn of service for tomcat deployment location / { proxy_pass http://tomcat.default.svc.cluster.local:8080; …

istio proxypass envoyproxy istio-sidecar

asked Feb 22 '21 at 11:51

Solsupungi

29
2

0

votes

2 answers

Rook Ceph pods are not starting properly after Istio sidecar is enabled

We are facing an issue with rook-ceph deployment in Kubernetes when the istio sidecar is enabled. The problem is that the OSDs are not coming up because the crashcollectors are not getting initialized properly. It is stuck as shown below. rook-ceph …

kubernetes istio ceph istio-sidecar kubernetes-rook

asked Feb 13 '21 at 06:37

Sunil Kpmbl

751
8
10

0

votes

1 answer

Can headers added by Istio be too large?

I'm getting a "request header too large" error on my application after installing Istio. Can the additional headers added by Istio be too large?

http-headers istio azure-aks istio-sidecar

asked Feb 08 '21 at 14:04

RMNull

149
3
12

0

votes

1 answer

Alertmanagers Endpoint not accessible from the Prometheus due to failing Istio-sidecar route

Setup: I have a small aws k8s cluster where the infrastructure components are deployed as helm charts. One of those components is the awesome Prometheus chart(see here). The network communication between the components should be configured with the…

prometheus istio endpoint amazon-eks istio-sidecar

asked Jan 22 '21 at 15:16

user15060367

1
1

0

votes

1 answer

lua envoyFilter ignored in istio-sidecar

I am trying to make an envoyFilter work in istio-sidecar. It seems that : Injection occurs. As my filter is present in my cluster's resources and istiod pushes to my sidecars whenever I update the filter. (And my pods and my filter are in the same…

envoyproxy istio-sidecar

asked Jan 15 '21 at 15:49

terrasson marc

97
1
10

0

votes

0 answers

Fail to curl to secure HTTP from local minikube cluster

So, I have minikube 0.16.0 installed Also istio 1.7.3 So I do envoy sidecars on each deployment I do, as per with command kubectl label namespace default istio-injection=enabled Now, coming to the question, I'm not able to do any curl from inside…

jenkins curl istio minikube istio-sidecar

asked Jan 14 '21 at 15:59

NeoVe

3,857
8
54
134

0

votes

1 answer

Spring-boot running under istio sidecar proxy throw HTTP 403 Error

There are ServiceA and ServiceB services deployed under the same namespace. There is istio enabled for validating request authentication. Any calls to the service needs to have 'Authrization' header with valid jwt token. It get validated with…

spring-boot kubernetes kubernetes-ingress istio istio-sidecar

asked Dec 12 '20 at 17:57

Senthil

323
4
15

0

votes

1 answer

How to add multiple request matcher and rewrite under virtualservice (istio)?

I am using istio and Kubernetes for my development. I have searched many article and post but not found the expected answer. Below is my virtual service script. apiVersion: networking.istio.io/v1beta1 kind: VirtualService metadata: annotations: …

url-routing istio istio-sidecar

asked Oct 16 '20 at 08:30

JDGuide

6,239
12
46
64

-1

votes

1 answer

Istio installation on VM's

has anyone did successfully install Istio on VirtualMachine and created workloadEntry? My istio-ingressgateway is exposed as type LoadBalancer(AWS Nlb) on private_subnets. On Virtual Machine the sidecar.env config file has has the default…

istio-sidecar

asked May 24 '21 at 20:26

Arsen

509
2
8
20

-1

votes

1 answer

Istio exclusion policy

Can somebody explain what this policy means, i have been trying for full day but didnt get in the proper way apiVersion: security.istio.io/v1beta1 kind: AuthorizationPolicy metadata: name: test-dev-only-authorized-api namespace:…

kubernetes istio istio-sidecar

asked Jan 11 '21 at 18:14

Jithin Kumar S

701
2
9
20

-2

votes

0 answers

istio API aggregation gateway

I have kubernetes and use istio. Can you tell me if istio can API aggregation gateway? When we make a query on a url, istio makes queries to different microservices and gives a single aggregated result

kubernetes istio istio-gateway istio-sidecar

asked Aug 21 '23 at 20:34

padavan

714
8
22

Questions tagged [istio-sidecar]