hi all I’m looking to configure a gateway with multiple wild card hosts with different certificates.
I’d like our gateways configured as follows:
apiVersion: networking.istio.io/v1beta1 kind: Gateway metadata: name: main-gateway namespace: istio-system spec: selector: istio: ingressgateway servers: - hosts: - "*.domain1.com" port: name: https-443 number: 443 protocol: HTTPS tls: credentialName: domain1-com-tls httpsRedirect: true mode: SIMPLE - hosts: - domain2.com - www.domain2.com port: name: https-443 number: 443 protocol: HTTPS tls: credentialName: domain2-com-tls httpsRedirect: true mode: SIMPLE
in this config, istio starts dropping traffic and in the log’s it states no filter chain errors
I have seen that adding
ISTIO_GATEWAY_STRIP_HOST_PORT could be a workaround but would like to understand what the after effects of adding this to our config could break or change.
Any advice would be greatly appreciated