Dylan Clendenin
Dylan Clendenin
I was reading how Istio does this (similar to App Mesh but different CRDs and implementation) https://istio.io/latest/blog/2018/egress-https/#tls-origination-by-istio specifically ```yaml apiVersion: networking.istio.io/v1alpha3 kind: VirtualService metadata: name: rewrite-port-for-googleapis spec: hosts: - www.googleapis.com...
Is the way to do this via a `VirtualRouter` that listens on a port other than 443 like: ```yaml --- apiVersion: appmesh.k8s.aws/v1beta2 kind: VirtualRouter metadata: namespace: ${APP_NAMESPACE} name: dog-api-router spec:...
With the above deployed I'm now seeing ``` [2022-07-01 22:20:59.375][57][debug][connection] [source/common/network/connection_impl.cc:912] [C4579] connecting to [2606:4700:3031::6815:28ac]:443 [2022-07-01 22:20:59.375][57][debug][connection] [source/common/network/connection_impl.cc:936] [C4579] immediate connect error: Cannot assign requested address [2022-07-01 22:20:59.375][57][debug][connection] [source/common/network/connection_impl.cc:575] [C4579]...
I went to AWS support for clarity and got this answer back: ``` Unfortunately , the only way to have access to the https API Service, is to change the...
The link to the proposal is 2 years old: https://github.com/aws/aws-app-mesh-roadmap/issues/2#issuecomment-686582926
I've created a new Mesh with the `ALLOW_ALL` egress filter and still cannot connect to any https site outside of the Mesh. Is there anyone from AWS around who can...
Added in #8 hopefully we can get that reviewed
this is added in #8 if we can get that through, until then you can try running my branch
Fixes: #1 and #2