I am installing istio with default configuration in an AWS EKS cluster. The corresponding load balancer created for ingressgateway has multiple ports exposed by default like 15443, 15031 etc. How do I limit the exposed ports to just 80 and 443?
If you’re using
istioctl and the default profile, you could:
Generate the IstioOperator corresponding to the profile
istioctl profile dump default > istio-generate-default.yaml
Update the section
spec.values.gateways.istio-egressgateway.portsin the YAML file to reduce the number of ports exposed.
Re apply the YAML
istioctl manifest apply -f istio-generate-default.yaml
Thanks for the solution. Are there no flags that we can pass to istioctl or helm to do so? I am trying to automate installing Istio in my cluster and editing a file would be difficult.
You can automate it by applying the yaml file.