Limiting exposed ports of a ingressgateway load balancer

I am installing istio with default configuration in an AWS EKS cluster. The corresponding load balancer created for ingressgateway has multiple ports exposed by default like 15443, 15031 etc. How do I limit the exposed ports to just 80 and 443?


If you’re using istioctl and the default profile, you could:

  1. Generate the IstioOperator corresponding to the profile

    istioctl profile dump default > istio-generate-default.yaml
  2. Update the section spec.values.gateways.istio-egressgateway.ports in the YAML file to reduce the number of ports exposed.

  3. Re apply the YAML

    istioctl manifest apply -f istio-generate-default.yaml