I have a scenario where an API client implemented in our monolith outside the service mesh must call through the service mesh (to ensure uniform security, logging etc) to an external API placed outside our company.
The routing is like this: External client --> istio-ingressgateway --> nginx (reverse proxy) with sidecar --> service entry (to external service) --> istio-egressgateway --> external API.
I’ve configured TLS origination for the outbound request as described in: https://istio.io/docs/tasks/traffic-management/egress/egress-gateway-tls-origination/
It’s working but in Kiali the Graph is displaying two separate flows, which makes it confusing to look at.
I hope someone can give some insight.