Questions tagged [istio]

Istio is an open-source platform for managing and securing microservices

Istio is an open platform that provides a uniform way to connect, manage, and secure microservices. Istio supports managing traffic flows between microservices, enforcing access policies, and aggregating telemetry data, all without requiring changes to the microservice code. Istio gives you:

Automatic load balancing for HTTP, gRPC, and TCP traffic.
Fine-grained control of traffic behavior with rich routing rules, retries, failovers, and fault injection.
A pluggable policy layer and configuration API supporting access controls, rate limits and quotas.
Automatic metrics, logs, and traces for all traffic within a cluster, including cluster ingress and egress.
Secure service-to-service authentication with strong identity assertions between services in a cluster.

Getting Started

Books

2612 questions

votes

0 answers

my istio-ingressgateway pod does come up when instaling Kubeflow from the kubeflow/manifest (istio 1.17)

I will be glad if someoone kindly help me with this please. I am a newbie in DEVOPS. I have installed a standalone cluster of kubernetes using kubectl 1.27.4 and minikube version: v1.31.1 on ubuntu 22.04. I want to run kubeflow using kubeflow…

asked Aug 18 '23 at 07:33

trial and error

votes

0 answers

How to log request and reponse body when using Kubernetes Istio

I'd like to log request and response json bodies for my kubernetes microservice. I use Istio service mesh. I know that Istio doesn't implement logging, but as far as I know I could use WASM and Envoy Filter for it. Here is my attemp using Tap Envoy…

kubernetes logging webassembly istio envoyproxy

asked Aug 17 '23 at 20:49

matined

votes

0 answers

Istio Cross Cluster Communication Return 503 UH no_healthy_upstream

There are service A in the K8S cluster A while service B in the K8S cluster B. The two clusters are connected through Istio using remote secret. After Istio injection, all the services in both clusters can call each other between clusters or inside…

kubernetes istio http-status-code-503

asked Aug 16 '23 at 17:36

B C

votes

2 answers

Istio: balance traffic across namespaces

I'm trying to set up balancing between applications in different namespaces with Istio. But I am always getting reply from one application in dev namespace. My point is get response from applications from same prefix, like: http://example.com - need…

kubernetes istio istio-gateway

asked Aug 14 '23 at 15:53

Валерий Сиволапенко

votes

0 answers

Istio\Envoy: how to turn off headers normalization

Istio perform some normalization on duplicate HTTP headers: https://istio.io/latest/docs/reference/config/security/normalization/#2-duplicate-headers Istio will merge duplicate headers to a single header by concatenating all values using comma as a…

istio envoyproxy

asked Aug 14 '23 at 03:53

Grigory Korolev

votes

0 answers

In istio telemetry, what's the difference between 'destination' and 'source' on reporter label?

It's written in the docs: 'Reporter: This identifies the reporter of the request. It is set to destination if report is from a server Istio proxy and source if report is from a client Istio proxy or a gateway.' But isn't clear for me. I use the…

kubernetes istio telemetry

asked Aug 11 '23 at 15:40

Wesley Freitas

votes

0 answers

Istio - dashboard for services using HTTP/HTTPS

We are using Istio 1.17.3 with Datadog for monitoring. istiod pods have following annotations to send metrics podAnnotations: { ad.datadoghq.com/discovery.check_names: '["istio"]', ad.datadoghq.com/discovery.init_configs: '[{}]', …

text https metrics istio datadog

asked Aug 11 '23 at 15:25

ank-ankur

votes

0 answers

How to access application on web browser while using AKS with Istio as add-on

I am using AKS with Istio add on feature and tried to deploy the application and in the end I am to curl my application(Followed this MS article https://learn.microsoft.com/en-us/azure/aks/istio-deploy-ingress). Also from the same vm I can access my…

azure-aks istio servicemesh

asked Aug 10 '23 at 19:15

Sharat Bhaskar

votes

0 answers

API calls to Apps in AKS intermittently returning 503 Errors

We have a solution with multiple applications hosted in the AKS cluster. The UI and other third party application make calls to the API in the AKS cluster. Some of the applications within the AKS also make API calls to the other end points within…

azure-aks istio

asked Aug 10 '23 at 15:06

Baolin Li

votes

0 answers

301 for hosted Streamlit application with Redirect loop - AWS, EKS, and Istio reverse proxy

I’ve deployed a Stream-lit application on EKS in AWS with a containerised solution. I’m exposing it via API Gateway which is using a VPC Link and then proxies calls into my EKS Cluster. I have a toml file that looks like this: toolbarMode =…

amazon-web-services cloud amazon-eks istio streamlit

asked Aug 10 '23 at 10:17

Carlton Sandhu

votes

1 answer

HTTPS gRPC request to asp.net server behind an Istio gateway fails

I have a grpc asp.net server which is sitting behind istio ingress gateway. grpc request works while using TCP as gateway protocol but it fails if protocol is set to HTTPS. I am trying to use istio to terminate ssl/tls grpc request but no luck so…

asp.net .net istio istio-gateway grpc-dotnet

asked Aug 09 '23 at 13:49

Prata

1,250
2
16
31

votes

0 answers

Istio: Envoy filter to remove server header

I would like to remove the server header being returned in the HTTP response when hitting the Health Check port 15021 for istio. Here is a example response: < HTTP/1.1 404 Not Found < date: Tue, 08 Aug 2023 20:22:56 GMT < server: envoy <…

istio envoyproxy

asked Aug 09 '23 at 12:17

pbr0ck3r

votes

0 answers

How to Enable MTLS with MultiCluster Service on GKE

I am looking for how to enable mTLS with services exported via the ServiceExport resource. I currently have two clusters in a fleet and i would like to establish multicluster service communication with mTLS. I have an istio mTLS STRICT policy…

kubernetes google-kubernetes-engine istio mtls google-anthos-service-mesh

asked Aug 08 '23 at 11:15

Azunna

votes

2 answers

Istio: Exposing SFTP Server Deployment on port 22

I am having a following working SFTP Deployment in my Kubernetes: apiVersion: apps/v1 kind: Deployment metadata: name: sftp-deployment spec: replicas: 1 selector: matchLabels: app: sftp template: metadata: labels: …

kubernetes istio istio-gateway

asked Aug 07 '23 at 12:03

f.bele

votes

1 answer

Can envoy header x-envoy-upstream-rq-timeout-ms be used in curl directly?

I tested a sending http request with x-envoy-upstream-rq-timeout-ms header between istio installed pod. envoy proxy I expected that request fails because of very small timeout-ms (1ms). It is shorter than actual upstream service time in the response…

istio envoyproxy

asked Aug 07 '23 at 07:20

Youngrok Ko

Prev 1 2 3

…

99 100 Next