Demystifying MeshNetworks when using Multi-Cluster deployments or VMs

rinormaloku · November 30, 2020, 1:18pm

I put this visually to make it easier to talk about these concepts (and even easier to spot misunderstandings).

The configuration shown in the image is applied to the cluster west-cluster; elaborating the points from the image:

The endpoints for the workloads on east-network are retrieved from the registry east-cluster (which has the prerequisite that the secret on how to query the east cluster is already in the istio-system namespace)
To reach the workloads in the east-network network the gateway at the IP 58.23.129.75 will be used. To be more concrete, the CP uses this information to configure workloads in the west-network on how to route traffic to workloads in the east-network
The west-network where the CP is itself installed queries the workload endpoints dynamically from the west-cluster registry (Do we need the secret for west-cluster kubeconfig?).
To reach the workloads on the same network we are pointing to the Ingress Controller istio-ingressgateway ? I picked this example from the docs, and am not sure why is this the case?

Why do we need 4? And did I understand the other points (1-3) correctly?

Topic		Replies	Views
Please help a noob out! Question about v1.8 multi-cluster mesh	0	334	November 22, 2020
East-west gateway without external IP Networking	3	2534	May 4, 2021
Can I use mesh-federation with single control plane, instead of replicated control planes across the two Istio meshes? I am not talking about multi-cluster deployments, I am asking about mesh-federation	6	379	March 2, 2021
Multi-network deployment	0	365	October 4, 2021
Install Multi-Primary on different networks Networking	1	516	August 24, 2021