Simple TLS Termination on Sidecar Envoy

I am trying to Terminate Simple TLS on Sidecar Envoy. My app is available publicly and makes API calls to internal services. I am using MTLS for internal services call but the public endpoint should be on simple TLS.
I tried using Gateway CRD but it works only on the ingress pods. I am able to achieve ALB(HTTPS) -> Ingres pods (HTTPS)-> Sidecar envoy (MTLS from Ingress to sidecar Envoy). I want to skip the Ingress pod and terminate HTTPS on sidecar envoy.
Any suggestions on adding HTTPS listeners on sidecar envoy ?