Forward real client ip through kong to my pod

framled · August 5, 2021, 10:42pm

Hi, I need your help here
I’m using kong with istio sidecar installed at AWS with a Network loadbalancer
What i’m trying to do: get client real ip header in my pod…

I’m following this: Istio / Proxy protocol on AWS NLB and Istio ingress gateway
and this is the envoy filter applied

apiVersion: networking.istio.io/v1alpha3
kind: EnvoyFilter
metadata:
  name: proxy-protocol
  namespace: kong-system
spec:
  workloadSelector:
    labels:
      app.kubernetes.io/instance: kong
  configPatches:
  - applyTo: LISTENER
    patch:
      operation: MERGE
      value:
        listener_filters:
        - name: envoy.filters.listener.proxy_protocol
        - name: envoy.filters.listener.tls_inspector
---
apiVersion: networking.istio.io/v1alpha3
kind: EnvoyFilter
metadata:
  name: kong-settings
  namespace: kong-system
spec:
  configPatches:
  - applyTo: NETWORK_FILTER
    match:
      listener:
        filterChain:
          filter:
            name: "envoy.filters.network.http_connection_manager"
    patch:
      operation: MERGE
      value:
        name: envoy.http_connection_manager
        typed_config:
          "@type": "type.googleapis.com/envoy.extensions.filters.network.http_connection_manager.v3.HttpConnectionManager"
          skip_xff_append: false
          use_remote_address: true
          xff_num_trusted_hops: 5

Topic		Replies	Views
Using Kafka protocol filter with Istio Networking	6	5364	June 19, 2023
Proxy ingress traffic to a specific pod Networking	0	1213	April 21, 2022
How to preserve TCP client IP over istio ingress gateway Networking	6	843	April 18, 2023
Istio proxy protocol does not work for tcp stream on EKS Networking	0	1180	July 19, 2020
EnvoyFilter inject header for VS routing Networking	0	538	April 8, 2021

Forward real client ip through kong to my pod

Related Topics