Hi, I would like to know if ISTIO can provide IDS/IPS-like (Intrusion Detection System) functionality or mirror the exact packet and send it to a log collector? I’ve read some documentation and there is a feature called routing. I want to know if anyone has done this before.
Thanks.
Hi,
I am not familiar with IDS/IPS, but with Istio can route the requests to different workloads based on request properties (i.e. headers, URI, etc.). Also, you can mirror the requests (fire and forget) where the exact same request meant for service A can get sent to service B (could be your log collector). More on traffic mirroring here.