mTLS setting with a Headless Service

Niraj_Tulachan · March 7, 2019, 6:53pm

Greetings All,

Is there a way or best of configuring the Istio’s sidecar to have mTLS for a headless Service? Currently, I can seen I’ve “outbound” in already setup but trying to do the same for the inbound as well.

curl 0:15000/config_dump | grep 'my-app-0.my-app'
 "name": "outbound|7000||my-app-0.my-app.mynamespace.svc.cluster.local",

Saw some discussion regarding the same https://github.com/istio/istio/issues/8883 and tried using the ServiceEntry but seems like it does not work.

Any pointer will be much appreciated!!!

Ariel_B · April 4, 2019, 10:17am

Hi @Niraj_Tulachan, did you manage to solve it? it seems it doesn’t work for me aswell

pavan.makadia · June 6, 2019, 1:22pm

Hello @Niraj_Tulachan , It’s still not working with istio-1.1.7? Did you solve it ?

Topic		Replies	Views
Headless service with one port forcing MTLS	0	906	November 25, 2019
Istio mTLS with pod without sidecar Networking	0	479	January 19, 2022
Sidecar configuration for mTLS for accessing external service Networking	1	1373	January 10, 2022
Istio 1.6.6 breaks auto mTLS for Pod to Pod (by PodIP) Networking	0	746	July 30, 2020
Problem accessing services without a sidecar from pods with a sidecar	2	2648	July 4, 2019

mTLS setting with a Headless Service

Related Topics