I am looking for the solution to ensure client source IP to stay preserved when connecting into the service running on k8s and exposed with envoy gateway api resources.
I understand that I could use EnvoyPatchPolicy resource and therefore I needed to modify envoy gateway confgimap to add to the default .data."envoy-gateway.yaml following keys to enable patching:
extensionApis:
enableEnvoyPatchPolicy: true
At the moment I was able to automate this with helm post-install Job but I wonder if there is more appropriate approach to enable this feature?
Once this is enabled I am struggling to
make proper EnvoyPatchPolicy configuration to set
to work.
I would appreciate very much some help, exampl or hints.
Thanks!
Hairs