mtls

问题 I am working on deploying an API solution on GCP where mutual SSL/TLS is required (server and client side certificates). So for the ingress of the traffic (entry point) I found that kubernetes ingress controller has this possibility (NGINX based). I am interested by cloud endpoints which has ESP (extensible service proxy which is also nginx deployment under kubernetes). I couldn't find anywhere in the documentation whether mutual SSL/TLS is available for ESP (cloud endpoint), does anyone know

问题 I am trying to enable mTLS in my mesh that I have already working with istio's sidecars. The problem I have is that I just get working connections up to one point, and then it fails to connect. This is how the services are set up right now with my failing implementation of mTLS (simplified): Istio IngressGateway -> NGINX pod -> API Gateway -> Service A -> [ Database ] -> Service B First thing to note is that I was using a NGINX pod as a load balancer to proxy_pass my requests to my API

问题 I am trying to enable mTLS in my mesh that I have already working with istio's sidecars. The problem I have is that I just get working connections up to one point, and then it fails to connect. This is how the services are set up right now with my failing implementation of mTLS (simplified): Istio IngressGateway -> NGINX pod -> API Gateway -> Service A -> [ Database ] -> Service B First thing to note is that I was using a NGINX pod as a load balancer to proxy_pass my requests to my API

来源： https://stackoverflow.com/questions/64289883/mtls-using-azure-function-http-trigger