We are currently using Istio 1.0.2 and cannot yet upgrade it. We have a requirement that TLS 1.0 be disabled. Until we can use the TLS Options in the newer version, I figured I could try using an Envoy filter.
However, the only one that seems like it could do the trick (though I’m not quite sure how yet) is the tls_inspector, which is a listener filter, and from what I gathered reading the docs, only http filters and network filters are supported.
Is there any way for me to block TLS 1.0 using Envoy filters?