New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
excludeOutboundPorts to facilitate headless data stores #9632
Comments
Hmm,
Successfully allows me to connect to Has anything changed in recent istio versions which now registers headless services with istio? (issues such as #8883, #7563, #7558) |
Ah so interesting this only works when you're not using a http service, a tcp service with the above destinationrule works fine, a http service does not. inserts usual feedback about headless services, tcp ports and http services being extremely confusing and unclear |
Another use case: I don't want istio-proxy to intercept DNS requests at all. It'd be nice to be able to do |
This issue has been automatically marked as stale because it has not had activity in the last 90 days. It will be closed in the next 30 days unless it is tagged "help wanted" or other activity occurs. Thank you for your contributions. |
This issue has been automatically closed because it has not had activity in the last month and a half. If this issue is still valid, please ping a maintainer and ask them to label it as "help wanted". Thank you for your contributions. |
Hey,
So we are still trying to fight istio to manage to use headless services within our cluster, and I know this causes pain for many other people (see the numerous issues).
The latest example is kafka, in which clients need to be able to connect to:
All of the options we've talk about in the past aren't great, and are largely cluster wide and quite clumsy.
I'm wondering if it would be able to add an
excludeOutboundPorts
option to proxy_init, this would just resolve the problems of talking to headless services on specific ports, eg redis, mongo, kafka, etc etc for specific clients.It seems like a decent addition as we already have:
The text was updated successfully, but these errors were encountered: