Disable globally the default retry policy

pmorelli92 · December 1, 2020, 11:22am

As I can read here the default policy for every communication happening inside the mesh is actually retrying twice in case of, for example, 503.

I want to disable this but I cannot figure out a why to do it globally for all the mesh as Virtual Services do not allow wildcards for hosts. I don’t know if this is doable via istio manifiest or with any other CRD.

The only way I figured out is adding a Virtual Service for each K8s Service we have where I can do:

apiVersion: networking.istio.io/v1beta1
kind: VirtualService
metadata:
  name: no-retries-for-one-service
spec:
  hosts:
  - one-service.default.svc.cluster.local
  http:
  - retries:
      attempts: 0
    route:
      - destination:
          host: one-service.default.svc.cluster.local

But this will introduce a lot of VirtualServices that we currently don’t have as we don’t use any other traffic management benefits like weighting, routing to subsets, etc.

Is this doable with only one VirtualService (or other resource) globally?

nick_tetrate · December 1, 2020, 9:46pm

unfortunately it does not have a global setting to disable.

Victor_Biga · November 8, 2023, 12:20pm

This is most likely possible doing on istiod setting meshConfig policy

  meshConfig:
    defaultHttpRetryPolicy:
      attempts: 0

Topic		Replies	Views
Retry inside mesh Networking	0	355	August 2, 2022
Virtual service as a "router" for services in mesh. Can't seem to get this working Config	0	850	September 12, 2021
Can't find meshConfig.disablePolicyChecks in istio 1.7.0 release Policies and Telemetry	1	481	September 18, 2020
Istio DISABLE PeerAuthentication on workloads Networking security	1	1088	April 30, 2021
Configure Mesh-Wide Outlier Detection Networking	0	421	April 12, 2021

Disable globally the default retry policy

Related topics