We would like to originate TLS for any outgoing HTTP traffic from our pods. For example all the external requests towards *.service.consul
are originally made with HTTP from our applications, and we would like to initiate the TLS in the sidecar in order to enforce the communication’s encryption.
I’ve tried to follow the Wildcard configuration for arbitrary domains documentation, but it only works for requests that originally use HTTPS, I wasn’t able to make it work with HTTP.
There is also this other approach in the documentation TLS origination for egress traffic, but it requires to specify the target domains and I can’t use wildcards such as *.service.consul
.
Is there any approach to implement this usecase?