When setting up and configuring istio using the operator the load balancer IP is not applied to the gcp firewall rules.
Example config:
spec:
components:
ingressGateways:
- name: istio-ingressgateway
k8s:
service:
loadBalancerIP: 1.2.3.4
The outcome I was expecting to see was a loadbalancer with the bound ip address 1.2.3.4
and a firewall rule with source range IP ranges: 1.2.3.4/32
what i instead get is the loadbalancer but with a firewall rule of IP ranges: 0.0.0.0/0
.
How do I get the firewall rule to accept the loadbalancerip address.