Questions tagged [istio]

Istio is an open-source platform for managing and securing microservices

Istio is an open platform that provides a uniform way to connect, manage, and secure microservices. Istio supports managing traffic flows between microservices, enforcing access policies, and aggregating telemetry data, all without requiring changes to the microservice code. Istio gives you:

Automatic load balancing for HTTP, gRPC, and TCP traffic.
Fine-grained control of traffic behavior with rich routing rules, retries, failovers, and fault injection.
A pluggable policy layer and configuration API supporting access controls, rate limits and quotas.
Automatic metrics, logs, and traces for all traffic within a cluster, including cluster ingress and egress.
Secure service-to-service authentication with strong identity assertions between services in a cluster.

Getting Started

Books

2612 questions

votes

1 answer

x-b3-sampled header is always set to 0 when accessing service through ingress controller

I have Kubernetes 1.17.5 and Istio 1.6.8 installed with demo profile. And here is my test setup [nginx-ingress-controller] -> [proxy<->ServiceA] -> [proxy<->ServiceB] Proxies for serviceA and serviceB are auto-injected by Istio…

kubernetes trace istio

asked Aug 20 '20 at 14:53

arkadi4

votes

1 answer

Kubernetes deployment of two microservices at same subdomain resulting in frequent and random 404 errors

We have a Kubernetes deployment consisting of a nodejs front end and an nginx backend. We're finding that the two deployments work fine in Kubernetes individually, but when they are both deployed requests to the front end return a 404 almost exactly…

kubernetes jhipster istio rancher

asked Aug 12 '20 at 14:51

Adam Wise

2,043
20
17

votes

1 answer

npm packages are not found - SyntaxError: Unexpected token '<'

I'm running a react container in Kubernetes env (AKS) with an istio gateway In local env, everything works well using docker build && docker run In Kubernetes, for each npm package, the response I'm getting is status code: 200, response…

reactjs docker webpack kubernetes istio

asked Aug 11 '20 at 15:31

royB

12,779
15
58
80

votes

1 answer

Preflight (OPTIONS) returns 403, CORS

We are using Kubernetes with Istio and have configured a virtual service: http: - match: - uri: prefix: /api rewrite: uri: /api route: - destination: host: svc-api port: number: 80 …

kubernetes cors http-status-code-403 istio

asked Aug 11 '20 at 10:11

Casper Nybroe

1,179
3
23
47

votes

0 answers

istio disable tls protocol versión 1.1

I am trying to disable tls protocol versión 1.1 in a k8s cluster with istio 1.6 installed. I have the following gateway configuration, following the [gateway][1] reference. apiVersion: networking.istio.io/v1beta1 kind: Gateway metadata: labels: …

tls1.2 istio gateway

asked Jul 23 '20 at 14:58

framled

votes

1 answer

Do I need Ambassador if I use Istio for Mapping?

I have been using Ambassador for a while, I like it but it's been spamming my logs with GET /api/.ambassador-internal/openapi-docs. So I'm thinking to switch to another mapping alternative and I found Istio. I'm not sure what exactly what is yet,…

kubernetes mapping istio ambassador

asked Jul 16 '20 at 03:22

bbnn

3,505
10
50
68

votes

1 answer

Istio K8sObjectOverlay.PathValue list elements not working

I had an existing instance of IstioOperator installed from Istio v1.5: apiVersion: install.istio.io/v1alpha1 kind: IstioOperator metadata: namespace: istio-system name: istio spec: profile: default components: ingressGateways: -…

kubernetes istio

asked Jun 19 '20 at 23:40

jeremysprofile

10,028
4
33
53

votes

1 answer

Communication Sidecar Controle Plane at Istio

I am currently doing research on the service mesh Istio in version 1.6. The data plane (Envoy proxies) are configured by the controle plane. Especially Pilot (part of istiod) is responsible to propagate routing rules and configs to the envoys. I am…

istio

asked Jun 04 '20 at 16:10

nikos

votes

1 answer

Can I use my Service Mesh for Event-Driven Messaging?

Since Service Meshes like Istio and Linkerd focuses on inter-service communication, instead of using Kafka for Event Driven Messaging, can I extend service mesh to achieve Event Driven Messaging? Nathan Aw (Singapore)

apache-kafka istio

asked Jun 03 '20 at 01:01

Nathan Aw

votes

1 answer

Installing kiali on GKE gives backend NotFound error

I've installed kiali operator and tried to load the UI from the URL(x.x.x.x/kiali) on Ingress. Following is the text I'm getting when loading the url. response 404 (backend NotFound), service rules for [ /kiali/ ] non-existent All my cluster…

google-kubernetes-engine istio kiali

asked May 26 '20 at 10:10

Sanka Darshana

1,391
1
23
41

votes

0 answers

How can I augment the default metrics in Istio 1.6?

As described here I am trying to add the destination_ip label to the istio_tcp_connections_closed_total metric so that I can observe which IPs are being blocked by my mesh. Since the introduction of Istiod these metrics are exposed directly by Envoy…

istio envoyproxy

asked May 23 '20 at 08:45

dippynark

2,743
20
58

votes

1 answer

Need assistance with custom authentication in Istio/kubernates

I am new to Istio and I have learned a lot and applied to my project which consist of many Microservices. I am stuck in Authentication when it comes to using Istio So the issue is this. Istio offers authentication which involves using Oauth google,…

node.js authentication kubernetes microservices istio

asked May 03 '20 at 00:02

BoeingK8

votes

1 answer

upstream connect error or disconnect/reset before headers. reset reason: connection termination when using Spring Boot

I am using Spring Boot with Embedded Tomcat 9.0.36. It is used as a Docker image in Kubernetes. Recently after upgrading envoy, I started getting exceptions. "upstream connect error or disconnect/reset before headers. reset reason: connection…

spring-boot tomcat kubernetes istio

asked Apr 27 '20 at 13:57

cody123

2,040
24
29

votes

3 answers

Istio complicated K8sObjectOverlay.PathValue

Istio can be deployed via IstioOperator. You can patch anything created by a certain component using the K8sObjectOverlay, which takes a PathValue. I cannot for the life of me understand how to provide complicated PathValues. Here are some example…

kubernetes istio

asked Apr 20 '20 at 20:25

jeremysprofile

10,028
4
33
53

votes

1 answer

How do I create a URL frontend to my keycloak instance after connecting it up to istio

I have istio installed and can see it on Rancher. I have keycloak installed as well. I am trying to connect the two and have a gateway setup so I can access keycloak front-end through a URL. In my keycloak manifest I have # Source:…

kubernetes keycloak istio rancher keycloak-services

asked Apr 10 '20 at 21:41

BipinS.

Prev 1 2 3

…

99 100 Next