How to perform SSL termination in envoy proxy?

Current we want to perform the SSL termination in envoy proxy. And I have see this article

That mention can using tls_certificates option to add the cert by using filename.
But how can I config Istio to inject cert into envoy proxy?

Envoy proxy config:

Do you mean terminate an external connection to the mesh using TLS? I think you probably want the istio ingress gateway, with TLS configured with your certificates:

Istio configures envoyas a gateway for you in this scenario (you don’t need to specify the envoy config)