Groups keyboard shortcuts have been updated
Dismiss
See shortcuts

Source IP address

10 views
Skip to first unread message

Haris Lihovac

unread,
Aug 20, 2024, 2:41:39 PM8/20/24
to envoy-users
I am looking for the solution to ensure client source IP to stay preserved when connecting into the service running on k8s and exposed with envoy gateway api  resources.

I understand that I could use EnvoyPatchPolicy resource and therefore I needed to modify envoy gateway confgimap to add to the default  .data."envoy-gateway.yaml  following keys to enable patching:

    extensionApis:
      enableEnvoyPatchPolicy: true

At the moment I was able to automate this with helm post-install Job but I wonder if there is more appropriate approach to enable this feature?

Once this is enabled I am struggling to make proper EnvoyPatchPolicy configuration to set
use_original_dst: true
to work.

I would appreciate very much some help, exampl or hints.

Thanks!
Hairs
Reply all
Reply to author
Forward
0 new messages