Nginx Ingress controller fails to communicate with apiserver

mr_rishisingh · May 13, 2020, 11:09am

I have enabled MTLS for my cluster using namespace level policy and destinationrules.
When i inject envoy in the ingress controller i start seeing below error in logs and ingress contoller pod goes in crashloopback state.
Istio version 1.4.7
kubernetes version 1.15.7

I0513 10:36:56.383730 6 request.go:848] Got a Retry-After 1s response for attempt 1 to https://10.20.0.1:443/version?timeout=32s
I0513 10:36:57.385092 6 request.go:848] Got a Retry-After 1s response for attempt 2 to https://10.20.0.1:443/version?timeout=32s
I0513 10:36:58.387623 6 request.go:848] Got a Retry-After 1s response for attempt 3 to https://10.20.0.1:443/version?timeout=32s

Have annotated nginx ingress controller with below

  traffic.sidecar.istio.io/includeInboundPorts: ""
  traffic.sidecar.istio.io/excludeInboundPorts: "80,443"
  # Exclude outbound traffic to kubernetes master from redirection.
  traffic.sidecar.istio.io/excludeOutboundIPRanges: kube_api_server_ip

Topic		Replies	Views
Istio (Envoy-proxy sidecar) is blocking http traffic on port 8088 Networking	20	9522	June 4, 2020
Request for Information on Traffic-management for the services not receiving any traffic through the Ingress Gateway	0	254	April 22, 2021
Unable to set retries for rate limiting applied at ingress gateway	0	306	May 17, 2023
istio-Ingressgateway pod is failing with 503 error Networking	1	1815	June 25, 2019
SSL errors appearing in trace-level logs of envoy	0	1819	April 25, 2020

Nginx Ingress controller fails to communicate with apiserver

Related Topics