Is there a way to configure istio operator to use hostports for ingress gateways? I’m running an on prem cluster (intranet only) and looking to use istio as both mesh and ingress by exposing hostport for ingress-gateway.
Thank you,
Eric
1 Like
Am I the only one interested in this or is there just some clear way to do this that I’m missing?
Also interested in that use case. Is it now possible?
I’m also interested. I have a single-node cluster and would like to expose the Ingress Gateway ports 80 and 443 on the host.
I think I figured it out.
Create a file my-overlays.yaml with the following content:
apiVersion: install.istio.io/v1alpha1
kind: IstioOperator
spec:
components:
ingressGateways:
- name: istio-ingressgateway
enabled: true
k8s:
overlays:
- kind: Deployment
name: istio-ingressgateway
patches:
- path: spec.template.spec.containers.[name:istio-proxy].ports.[containerPort:8080].hostPort
value: 80
- path: spec.template.spec.containers.[name:istio-proxy].ports.[containerPort:8443].hostPort
value: 443
Then run
istioctl install -f my-overlays.yamlRather than looking at allowing host ports as they are a security hazard… how about using MetalLB so it satisfies the service type LoadBalancer of the ingress gateway ?