otomi-core icon indicating copy to clipboard operation
otomi-core copied to clipboard

Published 20 hours ago verified publisher icon redkubes

Enabling Istio egress gateway disrupts outbound traffic from the Istio Service Mesh

Open j-zimnowoda opened this issue 2 years ago • 0 comments

Describe the bug: (a clear and concise description of what the bug is)

I have enabled the istio egress gateway and realised that it is causing SSL connection issues, e.g.: OpenSSL SSL_connect: Connection reset by peer in connection. It seems that all Pods that are part of the service mesh are affected while performing outbound traffic outside the service mesh.

To Reproduce Steps to reproduce the behavior:

  1. Enable istio egress gateway
apps:
    istio:
        egressGateway:
            enabled: true
  1. After above change is deployed try to access grafana and observe login error
  2. Try to deploy changes in otomi console and observe error
  3. login to container otomi-api and try to clone repo from gitea and observe OpenSSL SSL_connect: Connection reset by peer in connection error.

Expected behavior: (a clear and concise description of what you expected to happen) Enabling istio external gateway does not negatively affect outbound traffic.

j-zimnowoda avatar Sep 28 '22 13:09 j-zimnowoda