osm icon indicating copy to clipboard operation
osm copied to clipboard

Published 20 hours ago verified publisher icon openservicemesh

Experiment/Research Envoy's Proxy Protocol V2

Open steeling opened this issue 3 years ago • 1 comments
trafficstars

Envoy has a proxy protocol V2

Let's write up a summary of how it works, and create a demo for this.

The end result should be a sidecar in cluster A, that targets service B in cluster B, but is proxied through a "Gateway" envoy proxy, and finally to the destination service sidecar.

Where in this chain of sidecars should we be using the ProxyProtocol? what other information can we place on the connection string in proxy protocol v2?

Let's create a proof of concept around this. These sidecars could be part of a modified OSM system, or could be configured statically.

steeling avatar Aug 08 '22 23:08 steeling

This will likely be necessary when/if we implement gradual mTLS across a mesh

steeling avatar Sep 29 '22 17:09 steeling

This issue will be closed due to a long period of inactivity. If you would like this issue to remain open then please comment or update.

github-actions[bot] avatar Nov 29 '22 00:11 github-actions[bot]

Issue closed due to inactivity.

github-actions[bot] avatar Dec 07 '22 00:12 github-actions[bot]