Connect to public facing ip from internal host

nirving August 28, 2019, 1:30am 1

I have configured Istio 1.0.6 to have Ingress to my HashiCorp Vault / IAM Solution and trying to configure OIDC. As part of this I need the Vault component to connect to the IAM Solution via its public FQDN so that it can get the correct config.

Browser -> Vault works
Vault -> IAM fails with

wget https://xxx.xxxx.xxx.com/openam/oauth2/.well-known/openid-configuration
Connecting to xxx.xxxx.xxx.com (172.20.xxx.xxx:443)
wget: error getting response: Connection reset by peer

I have tried to configure egress but it still fails.Is there a way to configure Istio so that internal hosts can connect to the Ingress gateway without using Mutual TLS?

Nicholas

nirving August 30, 2019, 12:27pm 2

upgrading to 1.2.4 resolved the issue.

Topic		Replies	Views	Activity
Having trouble configuring scenario	0	304	June 17, 2019
Use ISTIO-Ingressgateway external IP	1	1045	November 11, 2022
Routing directly from ingress gateway to an external service via egress gateway Networking	3	1621	June 10, 2020
Troubleshoot Gateway->VirtualService routing Networking	0	467	August 10, 2021
Send-proxy-v2-ssl with engressgateway dont work Networking	6	464	August 31, 2023