Istio
Istio Setup
Last updated
Was this helpful?
Istio Setup
Last updated
Was this helpful?
Istio is a power traffic mesh management tool. It also provides an ingress gateway for the Kubernetes cluster.
The following setup can be done from the client machine. This installs Istio Operator, Istio Service Mesh, Istio Ingressgateway components.
From directory, run;
Wait for istiod and ingressgateway pods to start.
Or, for Rancher cluster, run:
Wait for istiod to start and ingressgateway pods to get deleted if any.
Run the following:
(Skip this section for Rancher cluster)
Once the above Operator setup is done, gateways need to be set up on each namespace. This assumes that the namespace (and relevant Rancher project) are created.
Edit and run this to define the variables:
Run this apply gateways
Having only one private gateway implies that all users can open URLs in all namespaces. Access control to services may be accomplished by authentication/authorization of the respective services via Keycloak
TBD.
TBD.
By default the installation scripts enable two Istio Ingress gateways - public and private. The public gateway is disabled by default. You may enable the same while opening up services to the public by following the steps given . To create more private gateways, refer .