-
I have configured two clusters
external-egress-tls for TLS connections -- IP is destinationIP1
external-egress for non-TLS connections -- IP is destinationIP2
the sub-cluster mode is applied…
-
### What problem are you trying to solve?
The rich metrics that Linkerd provides are rarely available for third party services such as `github.com` because the communication is encrypted from the a…
-
### Which jobs are flaking?
control plane
### Which tests are flaking?
Should validate the egress firewall policy functionality for allowed IP
### Since when has it been flaking?
yesterday was th…
-
1. We would love kube-network-policies to implement https://network-policy-api.sigs.k8s.io/npeps/npep-133-fqdn-egress-selector/
2. This API NPEP merged last week AND we will soon have the API merged…
-
Right now ,there is only support for forwarding envelope metrics to an Otel collector.:
https://github.com/cloudfoundry/loggregator-agent-release/blob/07c246750dd7fc79ed90f771652d5e06d5895895/src/pkg…
-
### Is this the right place to submit this?
- [X] This is not a security vulnerability or a crashing bug
- [X] This is not a question about how to use Istio
### Bug Description
Hi Team,
W…
-
[OCSP](https://en.wikipedia.org/wiki/Online_Certificate_Status_Protocol) currently requires egress out on port 80
-
## Background and Motivation
Reflecting on #85, I am thinking about a more generic option for egress. When running in a container, a rolling file egress may not make as much sense, given a cont…
-
## Bug report
I've spent some time getting egress to FQDN's working on a bare-metal Kubernetes cluster, roughly:
```yaml
---
apiVersion: cilium.io/v2
description: Default deny all rule, e…
-
### Overview
Currently, [the egress rule for postgres](https://github.com/defenseunicorns/uds-core/blob/main/src/keycloak/chart/templates/uds-package.yaml#L55-L62) is conditioned on `devMode: false`.…