K
Q

How can I access my service's through exposed NodePort when I enable mtls with Istio?

3/5/2019

I previously had a bunch of microservices running fine without mtls enabled, that I could access via my frontend http://192.168.99.100:31001/, backend(s), and db running on various other NodePort's.

For the next stage of my project I need to enable mtls to accomplish securing my services via a JWT token controlled by istio. But, when I use istio-auth-demo instead of istio-demo I cannot access my services via their endpoint. What do I need to do to fix this? I have wrote a gateway, virtualservice, and destinationrules that I thought might clear up the issue.

Just looking for someone to point me in the right direction.

-- Annihil8
istio
kubernetes

Similar Questions

How does Kubernetes lngress handles the concurrent request in GKE
Switching from self-managed certificate to google-managed certificate issue: "Specified IP address is in-use and would result in a conflict."
How to test if container is running postgres
How to use Kubernetes Persistent Local Volumes with Minikube on OSX?

1 Answer

3/10/2019

I am not sure what was the issue here. Maybe it was because I was running it on minikube and some config wasn't supported. I just enabled mtls on the pods I wanted and ran the regular version of istio.

-- Annihil8
Source: StackOverflow