Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- [
- {
- "name": "BlackHoleCluster",
- "type": "STATIC",
- "connectTimeout": "10s",
- "filters": [
- {
- "name": "istio.metadata_exchange",
- "typedConfig": {
- "@type": "type.googleapis.com/udpa.type.v1.TypedStruct",
- "typeUrl": "type.googleapis.com/envoy.tcp.metadataexchange.config.MetadataExchange",
- "value": {
- "protocol": "istio-peer-exchange"
- }
- }
- }
- ]
- },
- {
- "name": "InboundPassthroughClusterIpv4",
- "type": "ORIGINAL_DST",
- "connectTimeout": "10s",
- "lbPolicy": "CLUSTER_PROVIDED",
- "circuitBreakers": {
- "thresholds": [
- {
- "maxConnections": 4294967295,
- "maxPendingRequests": 4294967295,
- "maxRequests": 4294967295,
- "maxRetries": 4294967295
- }
- ]
- },
- "upstreamBindConfig": {
- "sourceAddress": {
- "address": "127.0.0.6",
- "portValue": 0
- }
- },
- "protocolSelection": "USE_DOWNSTREAM_PROTOCOL"
- },
- {
- "name": "PassthroughCluster",
- "type": "ORIGINAL_DST",
- "connectTimeout": "10s",
- "lbPolicy": "CLUSTER_PROVIDED",
- "circuitBreakers": {
- "thresholds": [
- {
- "maxConnections": 4294967295,
- "maxPendingRequests": 4294967295,
- "maxRequests": 4294967295,
- "maxRetries": 4294967295
- }
- ]
- },
- "protocolSelection": "USE_DOWNSTREAM_PROTOCOL",
- "filters": [
- {
- "name": "istio.metadata_exchange",
- "typedConfig": {
- "@type": "type.googleapis.com/udpa.type.v1.TypedStruct",
- "typeUrl": "type.googleapis.com/envoy.tcp.metadataexchange.config.MetadataExchange",
- "value": {
- "protocol": "istio-peer-exchange"
- }
- }
- }
- ]
- },
- {
- "transportSocketMatches": [
- {
- "name": "tlsMode-istio",
- "match": {
- "tlsMode": "istio"
- },
- "transportSocket": {
- "name": "envoy.transport_sockets.tls",
- "typedConfig": {
- "@type": "type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.UpstreamTlsContext",
- "commonTlsContext": {
- "tlsCertificateSdsSecretConfigs": [
- {
- "name": "default",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- ],
- "combinedValidationContext": {
- "defaultValidationContext": {
- "matchSubjectAltNames": [
- {
- "exact": "spiffe://sam-playground-123.svc.id.goog/ns/hipster/sa/default"
- }
- ]
- },
- "validationContextSdsSecretConfig": {
- "name": "ROOTCA",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- },
- "alpnProtocols": [
- "istio-peer-exchange",
- "istio",
- "h2"
- ]
- },
- "sni": "outbound_.9555_._.adservice.hipster.svc.cluster.local"
- }
- }
- },
- {
- "name": "tlsMode-disabled",
- "match": {},
- "transportSocket": {
- "name": "envoy.transport_sockets.raw_buffer"
- }
- }
- ],
- "name": "outbound|9555||adservice.hipster.svc.cluster.local",
- "type": "EDS",
- "edsClusterConfig": {
- "edsConfig": {
- "ads": {},
- "resourceApiVersion": "V3"
- },
- "serviceName": "outbound|9555||adservice.hipster.svc.cluster.local"
- },
- "connectTimeout": "10s",
- "circuitBreakers": {
- "thresholds": [
- {
- "maxConnections": 4294967295,
- "maxPendingRequests": 4294967295,
- "maxRequests": 4294967295,
- "maxRetries": 4294967295
- }
- ]
- },
- "http2ProtocolOptions": {
- "maxConcurrentStreams": 1073741824
- },
- "filters": [
- {
- "name": "istio.metadata_exchange",
- "typedConfig": {
- "@type": "type.googleapis.com/udpa.type.v1.TypedStruct",
- "typeUrl": "type.googleapis.com/envoy.tcp.metadataexchange.config.MetadataExchange",
- "value": {
- "protocol": "istio-peer-exchange"
- }
- }
- }
- ]
- },
- {
- "name": "agent",
- "type": "STATIC",
- "connectTimeout": "0.250s",
- "loadAssignment": {
- "clusterName": "prometheus_stats",
- "endpoints": [
- {
- "lbEndpoints": [
- {
- "endpoint": {
- "address": {
- "socketAddress": {
- "address": "127.0.0.1",
- "portValue": 15020
- }
- }
- }
- }
- ]
- }
- ]
- }
- },
- {
- "transportSocketMatches": [
- {
- "name": "tlsMode-istio",
- "match": {
- "tlsMode": "istio"
- },
- "transportSocket": {
- "name": "envoy.transport_sockets.tls",
- "typedConfig": {
- "@type": "type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.UpstreamTlsContext",
- "commonTlsContext": {
- "tlsCertificateSdsSecretConfigs": [
- {
- "name": "default",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- ],
- "combinedValidationContext": {
- "defaultValidationContext": {
- "matchSubjectAltNames": [
- {
- "exact": "spiffe://sam-playground-123.svc.id.goog/ns/kube-system/sa/ip-masq-agent"
- }
- ]
- },
- "validationContextSdsSecretConfig": {
- "name": "ROOTCA",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- },
- "alpnProtocols": [
- "istio-peer-exchange",
- "istio"
- ]
- },
- "sni": "outbound_.5473_._.calico-typha.kube-system.svc.cluster.local"
- }
- }
- },
- {
- "name": "tlsMode-disabled",
- "match": {},
- "transportSocket": {
- "name": "envoy.transport_sockets.raw_buffer"
- }
- }
- ],
- "name": "outbound|5473||calico-typha.kube-system.svc.cluster.local",
- "type": "EDS",
- "edsClusterConfig": {
- "edsConfig": {
- "ads": {},
- "resourceApiVersion": "V3"
- },
- "serviceName": "outbound|5473||calico-typha.kube-system.svc.cluster.local"
- },
- "connectTimeout": "10s",
- "circuitBreakers": {
- "thresholds": [
- {
- "maxConnections": 4294967295,
- "maxPendingRequests": 4294967295,
- "maxRequests": 4294967295,
- "maxRetries": 4294967295
- }
- ]
- },
- "filters": [
- {
- "name": "istio.metadata_exchange",
- "typedConfig": {
- "@type": "type.googleapis.com/udpa.type.v1.TypedStruct",
- "typeUrl": "type.googleapis.com/envoy.tcp.metadataexchange.config.MetadataExchange",
- "value": {
- "protocol": "istio-peer-exchange"
- }
- }
- }
- ]
- },
- {
- "transportSocketMatches": [
- {
- "name": "tlsMode-istio",
- "match": {
- "tlsMode": "istio"
- },
- "transportSocket": {
- "name": "envoy.transport_sockets.tls",
- "typedConfig": {
- "@type": "type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.UpstreamTlsContext",
- "commonTlsContext": {
- "tlsCertificateSdsSecretConfigs": [
- {
- "name": "default",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- ],
- "combinedValidationContext": {
- "defaultValidationContext": {
- "matchSubjectAltNames": [
- {
- "exact": "spiffe://sam-playground-123.svc.id.goog/ns/asm-system/sa/canonical-service-account"
- }
- ]
- },
- "validationContextSdsSecretConfig": {
- "name": "ROOTCA",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- },
- "alpnProtocols": [
- "istio-peer-exchange",
- "istio"
- ]
- },
- "sni": "outbound_.8443_._.canonical-service-controller-manager-metrics-service.asm-system.svc.cluster.local"
- }
- }
- },
- {
- "name": "tlsMode-disabled",
- "match": {},
- "transportSocket": {
- "name": "envoy.transport_sockets.raw_buffer"
- }
- }
- ],
- "name": "outbound|8443||canonical-service-controller-manager-metrics-service.asm-system.svc.cluster.local",
- "type": "EDS",
- "edsClusterConfig": {
- "edsConfig": {
- "ads": {},
- "resourceApiVersion": "V3"
- },
- "serviceName": "outbound|8443||canonical-service-controller-manager-metrics-service.asm-system.svc.cluster.local"
- },
- "connectTimeout": "10s",
- "circuitBreakers": {
- "thresholds": [
- {
- "maxConnections": 4294967295,
- "maxPendingRequests": 4294967295,
- "maxRequests": 4294967295,
- "maxRetries": 4294967295
- }
- ]
- },
- "filters": [
- {
- "name": "istio.metadata_exchange",
- "typedConfig": {
- "@type": "type.googleapis.com/udpa.type.v1.TypedStruct",
- "typeUrl": "type.googleapis.com/envoy.tcp.metadataexchange.config.MetadataExchange",
- "value": {
- "protocol": "istio-peer-exchange"
- }
- }
- }
- ]
- },
- {
- "transportSocketMatches": [
- {
- "name": "tlsMode-istio",
- "match": {
- "tlsMode": "istio"
- },
- "transportSocket": {
- "name": "envoy.transport_sockets.tls",
- "typedConfig": {
- "@type": "type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.UpstreamTlsContext",
- "commonTlsContext": {
- "tlsCertificateSdsSecretConfigs": [
- {
- "name": "default",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- ],
- "combinedValidationContext": {
- "defaultValidationContext": {
- "matchSubjectAltNames": [
- {
- "exact": "spiffe://sam-playground-123.svc.id.goog/ns/hipster/sa/default"
- }
- ]
- },
- "validationContextSdsSecretConfig": {
- "name": "ROOTCA",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- },
- "alpnProtocols": [
- "istio-peer-exchange",
- "istio",
- "h2"
- ]
- },
- "sni": "outbound_.7070_._.cartservice.hipster.svc.cluster.local"
- }
- }
- },
- {
- "name": "tlsMode-disabled",
- "match": {},
- "transportSocket": {
- "name": "envoy.transport_sockets.raw_buffer"
- }
- }
- ],
- "name": "outbound|7070||cartservice.hipster.svc.cluster.local",
- "type": "EDS",
- "edsClusterConfig": {
- "edsConfig": {
- "ads": {},
- "resourceApiVersion": "V3"
- },
- "serviceName": "outbound|7070||cartservice.hipster.svc.cluster.local"
- },
- "connectTimeout": "10s",
- "circuitBreakers": {
- "thresholds": [
- {
- "maxConnections": 4294967295,
- "maxPendingRequests": 4294967295,
- "maxRequests": 4294967295,
- "maxRetries": 4294967295
- }
- ]
- },
- "http2ProtocolOptions": {
- "maxConcurrentStreams": 1073741824
- },
- "filters": [
- {
- "name": "istio.metadata_exchange",
- "typedConfig": {
- "@type": "type.googleapis.com/udpa.type.v1.TypedStruct",
- "typeUrl": "type.googleapis.com/envoy.tcp.metadataexchange.config.MetadataExchange",
- "value": {
- "protocol": "istio-peer-exchange"
- }
- }
- }
- ]
- },
- {
- "transportSocketMatches": [
- {
- "name": "tlsMode-istio",
- "match": {
- "tlsMode": "istio"
- },
- "transportSocket": {
- "name": "envoy.transport_sockets.tls",
- "typedConfig": {
- "@type": "type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.UpstreamTlsContext",
- "commonTlsContext": {
- "tlsCertificateSdsSecretConfigs": [
- {
- "name": "default",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- ],
- "combinedValidationContext": {
- "defaultValidationContext": {
- "matchSubjectAltNames": [
- {
- "exact": "spiffe://sam-playground-123.svc.id.goog/ns/hipster/sa/default"
- }
- ]
- },
- "validationContextSdsSecretConfig": {
- "name": "ROOTCA",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- },
- "alpnProtocols": [
- "istio-peer-exchange",
- "istio",
- "h2"
- ]
- },
- "sni": "outbound_.5050_._.checkoutservice.hipster.svc.cluster.local"
- }
- }
- },
- {
- "name": "tlsMode-disabled",
- "match": {},
- "transportSocket": {
- "name": "envoy.transport_sockets.raw_buffer"
- }
- }
- ],
- "name": "outbound|5050||checkoutservice.hipster.svc.cluster.local",
- "type": "EDS",
- "edsClusterConfig": {
- "edsConfig": {
- "ads": {},
- "resourceApiVersion": "V3"
- },
- "serviceName": "outbound|5050||checkoutservice.hipster.svc.cluster.local"
- },
- "connectTimeout": "10s",
- "circuitBreakers": {
- "thresholds": [
- {
- "maxConnections": 4294967295,
- "maxPendingRequests": 4294967295,
- "maxRequests": 4294967295,
- "maxRetries": 4294967295
- }
- ]
- },
- "http2ProtocolOptions": {
- "maxConcurrentStreams": 1073741824
- },
- "filters": [
- {
- "name": "istio.metadata_exchange",
- "typedConfig": {
- "@type": "type.googleapis.com/udpa.type.v1.TypedStruct",
- "typeUrl": "type.googleapis.com/envoy.tcp.metadataexchange.config.MetadataExchange",
- "value": {
- "protocol": "istio-peer-exchange"
- }
- }
- }
- ]
- },
- {
- "transportSocketMatches": [
- {
- "name": "tlsMode-istio",
- "match": {
- "tlsMode": "istio"
- },
- "transportSocket": {
- "name": "envoy.transport_sockets.tls",
- "typedConfig": {
- "@type": "type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.UpstreamTlsContext",
- "commonTlsContext": {
- "tlsCertificateSdsSecretConfigs": [
- {
- "name": "default",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- ],
- "combinedValidationContext": {
- "defaultValidationContext": {
- "matchSubjectAltNames": [
- {
- "exact": "spiffe://sam-playground-123.svc.id.goog/ns/hipster/sa/default"
- }
- ]
- },
- "validationContextSdsSecretConfig": {
- "name": "ROOTCA",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- },
- "alpnProtocols": [
- "istio-peer-exchange",
- "istio",
- "h2"
- ]
- },
- "sni": "outbound_.7000_._.currencyservice.hipster.svc.cluster.local"
- }
- }
- },
- {
- "name": "tlsMode-disabled",
- "match": {},
- "transportSocket": {
- "name": "envoy.transport_sockets.raw_buffer"
- }
- }
- ],
- "name": "outbound|7000||currencyservice.hipster.svc.cluster.local",
- "type": "EDS",
- "edsClusterConfig": {
- "edsConfig": {
- "ads": {},
- "resourceApiVersion": "V3"
- },
- "serviceName": "outbound|7000||currencyservice.hipster.svc.cluster.local"
- },
- "connectTimeout": "10s",
- "circuitBreakers": {
- "thresholds": [
- {
- "maxConnections": 4294967295,
- "maxPendingRequests": 4294967295,
- "maxRequests": 4294967295,
- "maxRetries": 4294967295
- }
- ]
- },
- "http2ProtocolOptions": {
- "maxConcurrentStreams": 1073741824
- },
- "filters": [
- {
- "name": "istio.metadata_exchange",
- "typedConfig": {
- "@type": "type.googleapis.com/udpa.type.v1.TypedStruct",
- "typeUrl": "type.googleapis.com/envoy.tcp.metadataexchange.config.MetadataExchange",
- "value": {
- "protocol": "istio-peer-exchange"
- }
- }
- }
- ]
- },
- {
- "transportSocketMatches": [
- {
- "name": "tlsMode-istio",
- "match": {
- "tlsMode": "istio"
- },
- "transportSocket": {
- "name": "envoy.transport_sockets.tls",
- "typedConfig": {
- "@type": "type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.UpstreamTlsContext",
- "commonTlsContext": {
- "tlsCertificateSdsSecretConfigs": [
- {
- "name": "default",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- ],
- "combinedValidationContext": {
- "defaultValidationContext": {
- "matchSubjectAltNames": [
- {
- "exact": "spiffe://sam-playground-123.svc.id.goog/ns/kube-system/sa/default"
- }
- ]
- },
- "validationContextSdsSecretConfig": {
- "name": "ROOTCA",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- },
- "alpnProtocols": [
- "istio-peer-exchange",
- "istio"
- ]
- },
- "sni": "outbound_.80_._.default-http-backend.kube-system.svc.cluster.local"
- }
- }
- },
- {
- "name": "tlsMode-disabled",
- "match": {},
- "transportSocket": {
- "name": "envoy.transport_sockets.raw_buffer"
- }
- }
- ],
- "name": "outbound|80||default-http-backend.kube-system.svc.cluster.local",
- "type": "EDS",
- "edsClusterConfig": {
- "edsConfig": {
- "ads": {},
- "resourceApiVersion": "V3"
- },
- "serviceName": "outbound|80||default-http-backend.kube-system.svc.cluster.local"
- },
- "connectTimeout": "10s",
- "circuitBreakers": {
- "thresholds": [
- {
- "maxConnections": 4294967295,
- "maxPendingRequests": 4294967295,
- "maxRequests": 4294967295,
- "maxRetries": 4294967295
- }
- ]
- },
- "filters": [
- {
- "name": "istio.metadata_exchange",
- "typedConfig": {
- "@type": "type.googleapis.com/udpa.type.v1.TypedStruct",
- "typeUrl": "type.googleapis.com/envoy.tcp.metadataexchange.config.MetadataExchange",
- "value": {
- "protocol": "istio-peer-exchange"
- }
- }
- }
- ]
- },
- {
- "transportSocketMatches": [
- {
- "name": "tlsMode-istio",
- "match": {
- "tlsMode": "istio"
- },
- "transportSocket": {
- "name": "envoy.transport_sockets.tls",
- "typedConfig": {
- "@type": "type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.UpstreamTlsContext",
- "commonTlsContext": {
- "tlsCertificateSdsSecretConfigs": [
- {
- "name": "default",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- ],
- "combinedValidationContext": {
- "defaultValidationContext": {
- "matchSubjectAltNames": [
- {
- "exact": "spiffe://sam-playground-123.svc.id.goog/ns/hipster/sa/default"
- }
- ]
- },
- "validationContextSdsSecretConfig": {
- "name": "ROOTCA",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- },
- "alpnProtocols": [
- "istio-peer-exchange",
- "istio",
- "h2"
- ]
- },
- "sni": "outbound_.5000_._.emailservice.hipster.svc.cluster.local"
- }
- }
- },
- {
- "name": "tlsMode-disabled",
- "match": {},
- "transportSocket": {
- "name": "envoy.transport_sockets.raw_buffer"
- }
- }
- ],
- "name": "outbound|5000||emailservice.hipster.svc.cluster.local",
- "type": "EDS",
- "edsClusterConfig": {
- "edsConfig": {
- "ads": {},
- "resourceApiVersion": "V3"
- },
- "serviceName": "outbound|5000||emailservice.hipster.svc.cluster.local"
- },
- "connectTimeout": "10s",
- "circuitBreakers": {
- "thresholds": [
- {
- "maxConnections": 4294967295,
- "maxPendingRequests": 4294967295,
- "maxRequests": 4294967295,
- "maxRetries": 4294967295
- }
- ]
- },
- "http2ProtocolOptions": {
- "maxConcurrentStreams": 1073741824
- },
- "filters": [
- {
- "name": "istio.metadata_exchange",
- "typedConfig": {
- "@type": "type.googleapis.com/udpa.type.v1.TypedStruct",
- "typeUrl": "type.googleapis.com/envoy.tcp.metadataexchange.config.MetadataExchange",
- "value": {
- "protocol": "istio-peer-exchange"
- }
- }
- }
- ]
- },
- {
- "transportSocketMatches": [
- {
- "name": "tlsMode-istio",
- "match": {
- "tlsMode": "istio"
- },
- "transportSocket": {
- "name": "envoy.transport_sockets.tls",
- "typedConfig": {
- "@type": "type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.UpstreamTlsContext",
- "commonTlsContext": {
- "tlsCertificateSdsSecretConfigs": [
- {
- "name": "default",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- ],
- "combinedValidationContext": {
- "defaultValidationContext": {
- "matchSubjectAltNames": [
- {
- "exact": "spiffe://sam-playground-123.svc.id.goog/ns/hipster/sa/default"
- }
- ]
- },
- "validationContextSdsSecretConfig": {
- "name": "ROOTCA",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- },
- "alpnProtocols": [
- "istio-peer-exchange",
- "istio"
- ]
- },
- "sni": "outbound_.80_._.frontend-external.hipster.svc.cluster.local"
- }
- }
- },
- {
- "name": "tlsMode-disabled",
- "match": {},
- "transportSocket": {
- "name": "envoy.transport_sockets.raw_buffer"
- }
- }
- ],
- "name": "outbound|80||frontend-external.hipster.svc.cluster.local",
- "type": "EDS",
- "edsClusterConfig": {
- "edsConfig": {
- "ads": {},
- "resourceApiVersion": "V3"
- },
- "serviceName": "outbound|80||frontend-external.hipster.svc.cluster.local"
- },
- "connectTimeout": "10s",
- "circuitBreakers": {
- "thresholds": [
- {
- "maxConnections": 4294967295,
- "maxPendingRequests": 4294967295,
- "maxRequests": 4294967295,
- "maxRetries": 4294967295
- }
- ]
- },
- "filters": [
- {
- "name": "istio.metadata_exchange",
- "typedConfig": {
- "@type": "type.googleapis.com/udpa.type.v1.TypedStruct",
- "typeUrl": "type.googleapis.com/envoy.tcp.metadataexchange.config.MetadataExchange",
- "value": {
- "protocol": "istio-peer-exchange"
- }
- }
- }
- ]
- },
- {
- "transportSocketMatches": [
- {
- "name": "tlsMode-istio",
- "match": {
- "tlsMode": "istio"
- },
- "transportSocket": {
- "name": "envoy.transport_sockets.tls",
- "typedConfig": {
- "@type": "type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.UpstreamTlsContext",
- "commonTlsContext": {
- "tlsCertificateSdsSecretConfigs": [
- {
- "name": "default",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- ],
- "combinedValidationContext": {
- "defaultValidationContext": {
- "matchSubjectAltNames": [
- {
- "exact": "spiffe://sam-playground-123.svc.id.goog/ns/hipster/sa/default"
- }
- ]
- },
- "validationContextSdsSecretConfig": {
- "name": "ROOTCA",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- },
- "alpnProtocols": [
- "istio-peer-exchange",
- "istio"
- ]
- },
- "sni": "outbound_.80_._.frontend.hipster.svc.cluster.local"
- }
- }
- },
- {
- "name": "tlsMode-disabled",
- "match": {},
- "transportSocket": {
- "name": "envoy.transport_sockets.raw_buffer"
- }
- }
- ],
- "name": "outbound|80||frontend.hipster.svc.cluster.local",
- "type": "EDS",
- "edsClusterConfig": {
- "edsConfig": {
- "ads": {},
- "resourceApiVersion": "V3"
- },
- "serviceName": "outbound|80||frontend.hipster.svc.cluster.local"
- },
- "connectTimeout": "10s",
- "circuitBreakers": {
- "thresholds": [
- {
- "maxConnections": 4294967295,
- "maxPendingRequests": 4294967295,
- "maxRequests": 4294967295,
- "maxRetries": 4294967295
- }
- ]
- },
- "filters": [
- {
- "name": "istio.metadata_exchange",
- "typedConfig": {
- "@type": "type.googleapis.com/udpa.type.v1.TypedStruct",
- "typeUrl": "type.googleapis.com/envoy.tcp.metadataexchange.config.MetadataExchange",
- "value": {
- "protocol": "istio-peer-exchange"
- }
- }
- }
- ]
- },
- {
- "transportSocketMatches": [
- {
- "name": "tlsMode-istio",
- "match": {
- "tlsMode": "istio"
- },
- "transportSocket": {
- "name": "envoy.transport_sockets.tls",
- "typedConfig": {
- "@type": "type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.UpstreamTlsContext",
- "commonTlsContext": {
- "tlsCertificateSdsSecretConfigs": [
- {
- "name": "default",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- ],
- "combinedValidationContext": {
- "defaultValidationContext": {
- "matchSubjectAltNames": [
- {
- "exact": "spiffe://sam-playground-123.svc.id.goog/ns/config-management-system/sa/importer"
- }
- ]
- },
- "validationContextSdsSecretConfig": {
- "name": "ROOTCA",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- },
- "alpnProtocols": [
- "istio-peer-exchange",
- "istio"
- ]
- },
- "sni": "outbound_.8675_._.git-importer.config-management-system.svc.cluster.local"
- }
- }
- },
- {
- "name": "tlsMode-disabled",
- "match": {},
- "transportSocket": {
- "name": "envoy.transport_sockets.raw_buffer"
- }
- }
- ],
- "name": "outbound|8675||git-importer.config-management-system.svc.cluster.local",
- "type": "EDS",
- "edsClusterConfig": {
- "edsConfig": {
- "ads": {},
- "resourceApiVersion": "V3"
- },
- "serviceName": "outbound|8675||git-importer.config-management-system.svc.cluster.local"
- },
- "connectTimeout": "10s",
- "circuitBreakers": {
- "thresholds": [
- {
- "maxConnections": 4294967295,
- "maxPendingRequests": 4294967295,
- "maxRequests": 4294967295,
- "maxRetries": 4294967295
- }
- ]
- },
- "filters": [
- {
- "name": "istio.metadata_exchange",
- "typedConfig": {
- "@type": "type.googleapis.com/udpa.type.v1.TypedStruct",
- "typeUrl": "type.googleapis.com/envoy.tcp.metadataexchange.config.MetadataExchange",
- "value": {
- "protocol": "istio-peer-exchange"
- }
- }
- }
- ]
- },
- {
- "transportSocketMatches": [
- {
- "name": "tlsMode-istio",
- "match": {
- "tlsMode": "istio"
- },
- "transportSocket": {
- "name": "envoy.transport_sockets.tls",
- "typedConfig": {
- "@type": "type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.UpstreamTlsContext",
- "commonTlsContext": {
- "tlsCertificateSdsSecretConfigs": [
- {
- "name": "default",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- ],
- "combinedValidationContext": {
- "defaultValidationContext": {
- "matchSubjectAltNames": [
- {
- "exact": "spiffe://sam-playground-123.svc.id.goog/ns/gke-connect/sa/connect-agent-sa"
- }
- ]
- },
- "validationContextSdsSecretConfig": {
- "name": "ROOTCA",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- },
- "alpnProtocols": [
- "istio-peer-exchange",
- "istio"
- ]
- },
- "sni": "outbound_.8080_._.gke-connect-monitoring.gke-connect.svc.cluster.local"
- }
- }
- },
- {
- "name": "tlsMode-disabled",
- "match": {},
- "transportSocket": {
- "name": "envoy.transport_sockets.raw_buffer"
- }
- }
- ],
- "name": "outbound|8080||gke-connect-monitoring.gke-connect.svc.cluster.local",
- "type": "EDS",
- "edsClusterConfig": {
- "edsConfig": {
- "ads": {},
- "resourceApiVersion": "V3"
- },
- "serviceName": "outbound|8080||gke-connect-monitoring.gke-connect.svc.cluster.local"
- },
- "connectTimeout": "10s",
- "circuitBreakers": {
- "thresholds": [
- {
- "maxConnections": 4294967295,
- "maxPendingRequests": 4294967295,
- "maxRequests": 4294967295,
- "maxRetries": 4294967295
- }
- ]
- },
- "filters": [
- {
- "name": "istio.metadata_exchange",
- "typedConfig": {
- "@type": "type.googleapis.com/udpa.type.v1.TypedStruct",
- "typeUrl": "type.googleapis.com/envoy.tcp.metadataexchange.config.MetadataExchange",
- "value": {
- "protocol": "istio-peer-exchange"
- }
- }
- }
- ]
- },
- {
- "transportSocketMatches": [
- {
- "name": "tlsMode-istio",
- "match": {
- "tlsMode": "istio"
- },
- "transportSocket": {
- "name": "envoy.transport_sockets.tls",
- "typedConfig": {
- "@type": "type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.UpstreamTlsContext",
- "commonTlsContext": {
- "tlsCertificateSdsSecretConfigs": [
- {
- "name": "default",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- ],
- "combinedValidationContext": {
- "defaultValidationContext": {
- "matchSubjectAltNames": [
- {
- "exact": "spiffe://sam-playground-123.svc.id.goog/ns/sample/sa/default"
- }
- ]
- },
- "validationContextSdsSecretConfig": {
- "name": "ROOTCA",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- },
- "alpnProtocols": [
- "istio-peer-exchange",
- "istio"
- ]
- },
- "sni": "outbound_.5000_._.helloworld.sample.svc.cluster.local"
- }
- }
- },
- {
- "name": "tlsMode-disabled",
- "match": {},
- "transportSocket": {
- "name": "envoy.transport_sockets.raw_buffer"
- }
- }
- ],
- "name": "outbound|5000||helloworld.sample.svc.cluster.local",
- "type": "EDS",
- "edsClusterConfig": {
- "edsConfig": {
- "ads": {},
- "resourceApiVersion": "V3"
- },
- "serviceName": "outbound|5000||helloworld.sample.svc.cluster.local"
- },
- "connectTimeout": "10s",
- "circuitBreakers": {
- "thresholds": [
- {
- "maxConnections": 4294967295,
- "maxPendingRequests": 4294967295,
- "maxRequests": 4294967295,
- "maxRetries": 4294967295
- }
- ]
- },
- "filters": [
- {
- "name": "istio.metadata_exchange",
- "typedConfig": {
- "@type": "type.googleapis.com/udpa.type.v1.TypedStruct",
- "typeUrl": "type.googleapis.com/envoy.tcp.metadataexchange.config.MetadataExchange",
- "value": {
- "protocol": "istio-peer-exchange"
- }
- }
- }
- ]
- },
- {
- "transportSocketMatches": [
- {
- "name": "tlsMode-istio",
- "match": {
- "tlsMode": "istio"
- },
- "transportSocket": {
- "name": "envoy.transport_sockets.tls",
- "typedConfig": {
- "@type": "type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.UpstreamTlsContext",
- "commonTlsContext": {
- "tlsCertificateSdsSecretConfigs": [
- {
- "name": "default",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- ],
- "combinedValidationContext": {
- "defaultValidationContext": {
- "matchSubjectAltNames": [
- {
- "exact": "spiffe://sam-playground-123.svc.id.goog/ns/istio-system/sa/istio-ingressgateway-service-account"
- }
- ]
- },
- "validationContextSdsSecretConfig": {
- "name": "ROOTCA",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- },
- "alpnProtocols": [
- "istio-peer-exchange",
- "istio",
- "h2"
- ]
- },
- "sni": "outbound_.80_._.istio-ingressgateway.istio-system.svc.cluster.local"
- }
- }
- },
- {
- "name": "tlsMode-disabled",
- "match": {},
- "transportSocket": {
- "name": "envoy.transport_sockets.raw_buffer"
- }
- }
- ],
- "name": "outbound|80||istio-ingressgateway.istio-system.svc.cluster.local",
- "type": "EDS",
- "edsClusterConfig": {
- "edsConfig": {
- "ads": {},
- "resourceApiVersion": "V3"
- },
- "serviceName": "outbound|80||istio-ingressgateway.istio-system.svc.cluster.local"
- },
- "connectTimeout": "10s",
- "circuitBreakers": {
- "thresholds": [
- {
- "maxConnections": 4294967295,
- "maxPendingRequests": 4294967295,
- "maxRequests": 4294967295,
- "maxRetries": 4294967295
- }
- ]
- },
- "http2ProtocolOptions": {
- "maxConcurrentStreams": 1073741824
- },
- "filters": [
- {
- "name": "istio.metadata_exchange",
- "typedConfig": {
- "@type": "type.googleapis.com/udpa.type.v1.TypedStruct",
- "typeUrl": "type.googleapis.com/envoy.tcp.metadataexchange.config.MetadataExchange",
- "value": {
- "protocol": "istio-peer-exchange"
- }
- }
- }
- ]
- },
- {
- "transportSocketMatches": [
- {
- "name": "tlsMode-istio",
- "match": {
- "tlsMode": "istio"
- },
- "transportSocket": {
- "name": "envoy.transport_sockets.tls",
- "typedConfig": {
- "@type": "type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.UpstreamTlsContext",
- "commonTlsContext": {
- "tlsCertificateSdsSecretConfigs": [
- {
- "name": "default",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- ],
- "combinedValidationContext": {
- "defaultValidationContext": {
- "matchSubjectAltNames": [
- {
- "exact": "spiffe://sam-playground-123.svc.id.goog/ns/istio-system/sa/istio-ingressgateway-service-account"
- }
- ]
- },
- "validationContextSdsSecretConfig": {
- "name": "ROOTCA",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- },
- "alpnProtocols": [
- "istio-peer-exchange",
- "istio"
- ]
- },
- "sni": "outbound_.443_._.istio-ingressgateway.istio-system.svc.cluster.local"
- }
- }
- },
- {
- "name": "tlsMode-disabled",
- "match": {},
- "transportSocket": {
- "name": "envoy.transport_sockets.raw_buffer"
- }
- }
- ],
- "name": "outbound|443||istio-ingressgateway.istio-system.svc.cluster.local",
- "type": "EDS",
- "edsClusterConfig": {
- "edsConfig": {
- "ads": {},
- "resourceApiVersion": "V3"
- },
- "serviceName": "outbound|443||istio-ingressgateway.istio-system.svc.cluster.local"
- },
- "connectTimeout": "10s",
- "circuitBreakers": {
- "thresholds": [
- {
- "maxConnections": 4294967295,
- "maxPendingRequests": 4294967295,
- "maxRequests": 4294967295,
- "maxRetries": 4294967295
- }
- ]
- },
- "filters": [
- {
- "name": "istio.metadata_exchange",
- "typedConfig": {
- "@type": "type.googleapis.com/udpa.type.v1.TypedStruct",
- "typeUrl": "type.googleapis.com/envoy.tcp.metadataexchange.config.MetadataExchange",
- "value": {
- "protocol": "istio-peer-exchange"
- }
- }
- }
- ]
- },
- {
- "transportSocketMatches": [
- {
- "name": "tlsMode-istio",
- "match": {
- "tlsMode": "istio"
- },
- "transportSocket": {
- "name": "envoy.transport_sockets.tls",
- "typedConfig": {
- "@type": "type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.UpstreamTlsContext",
- "commonTlsContext": {
- "tlsCertificateSdsSecretConfigs": [
- {
- "name": "default",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- ],
- "combinedValidationContext": {
- "defaultValidationContext": {
- "matchSubjectAltNames": [
- {
- "exact": "spiffe://sam-playground-123.svc.id.goog/ns/istio-system/sa/istio-ingressgateway-service-account"
- }
- ]
- },
- "validationContextSdsSecretConfig": {
- "name": "ROOTCA",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- },
- "alpnProtocols": [
- "istio-peer-exchange",
- "istio"
- ]
- },
- "sni": "outbound_.15021_._.istio-ingressgateway.istio-system.svc.cluster.local"
- }
- }
- },
- {
- "name": "tlsMode-disabled",
- "match": {},
- "transportSocket": {
- "name": "envoy.transport_sockets.raw_buffer"
- }
- }
- ],
- "name": "outbound|15021||istio-ingressgateway.istio-system.svc.cluster.local",
- "type": "EDS",
- "edsClusterConfig": {
- "edsConfig": {
- "ads": {},
- "resourceApiVersion": "V3"
- },
- "serviceName": "outbound|15021||istio-ingressgateway.istio-system.svc.cluster.local"
- },
- "connectTimeout": "10s",
- "circuitBreakers": {
- "thresholds": [
- {
- "maxConnections": 4294967295,
- "maxPendingRequests": 4294967295,
- "maxRequests": 4294967295,
- "maxRetries": 4294967295
- }
- ]
- },
- "filters": [
- {
- "name": "istio.metadata_exchange",
- "typedConfig": {
- "@type": "type.googleapis.com/udpa.type.v1.TypedStruct",
- "typeUrl": "type.googleapis.com/envoy.tcp.metadataexchange.config.MetadataExchange",
- "value": {
- "protocol": "istio-peer-exchange"
- }
- }
- }
- ]
- },
- {
- "transportSocketMatches": [
- {
- "name": "tlsMode-istio",
- "match": {
- "tlsMode": "istio"
- },
- "transportSocket": {
- "name": "envoy.transport_sockets.tls",
- "typedConfig": {
- "@type": "type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.UpstreamTlsContext",
- "commonTlsContext": {
- "tlsCertificateSdsSecretConfigs": [
- {
- "name": "default",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- ],
- "combinedValidationContext": {
- "defaultValidationContext": {
- "matchSubjectAltNames": [
- {
- "exact": "spiffe://sam-playground-123.svc.id.goog/ns/istio-system/sa/istio-ingressgateway-service-account"
- }
- ]
- },
- "validationContextSdsSecretConfig": {
- "name": "ROOTCA",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- },
- "alpnProtocols": [
- "istio-peer-exchange",
- "istio"
- ]
- },
- "sni": "outbound_.15443_._.istio-ingressgateway.istio-system.svc.cluster.local"
- }
- }
- },
- {
- "name": "tlsMode-disabled",
- "match": {},
- "transportSocket": {
- "name": "envoy.transport_sockets.raw_buffer"
- }
- }
- ],
- "name": "outbound|15443||istio-ingressgateway.istio-system.svc.cluster.local",
- "type": "EDS",
- "edsClusterConfig": {
- "edsConfig": {
- "ads": {},
- "resourceApiVersion": "V3"
- },
- "serviceName": "outbound|15443||istio-ingressgateway.istio-system.svc.cluster.local"
- },
- "connectTimeout": "10s",
- "circuitBreakers": {
- "thresholds": [
- {
- "maxConnections": 4294967295,
- "maxPendingRequests": 4294967295,
- "maxRequests": 4294967295,
- "maxRetries": 4294967295
- }
- ]
- },
- "filters": [
- {
- "name": "istio.metadata_exchange",
- "typedConfig": {
- "@type": "type.googleapis.com/udpa.type.v1.TypedStruct",
- "typeUrl": "type.googleapis.com/envoy.tcp.metadataexchange.config.MetadataExchange",
- "value": {
- "protocol": "istio-peer-exchange"
- }
- }
- }
- ]
- },
- {
- "transportSocketMatches": [
- {
- "name": "tlsMode-istio",
- "match": {
- "tlsMode": "istio"
- },
- "transportSocket": {
- "name": "envoy.transport_sockets.tls",
- "typedConfig": {
- "@type": "type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.UpstreamTlsContext",
- "commonTlsContext": {
- "tlsCertificateSdsSecretConfigs": [
- {
- "name": "default",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- ],
- "combinedValidationContext": {
- "defaultValidationContext": {
- "matchSubjectAltNames": [
- {
- "exact": "spiffe://sam-playground-123.svc.id.goog/ns/istio-system/sa/istiod-service-account"
- }
- ]
- },
- "validationContextSdsSecretConfig": {
- "name": "ROOTCA",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- },
- "alpnProtocols": [
- "istio-peer-exchange",
- "istio"
- ]
- },
- "sni": "outbound_.443_._.istiod-asm-173-6.istio-system.svc.cluster.local"
- }
- }
- },
- {
- "name": "tlsMode-disabled",
- "match": {},
- "transportSocket": {
- "name": "envoy.transport_sockets.raw_buffer"
- }
- }
- ],
- "name": "outbound|443||istiod-asm-173-6.istio-system.svc.cluster.local",
- "type": "EDS",
- "edsClusterConfig": {
- "edsConfig": {
- "ads": {},
- "resourceApiVersion": "V3"
- },
- "serviceName": "outbound|443||istiod-asm-173-6.istio-system.svc.cluster.local"
- },
- "connectTimeout": "10s",
- "circuitBreakers": {
- "thresholds": [
- {
- "maxConnections": 4294967295,
- "maxPendingRequests": 4294967295,
- "maxRequests": 4294967295,
- "maxRetries": 4294967295
- }
- ]
- },
- "filters": [
- {
- "name": "istio.metadata_exchange",
- "typedConfig": {
- "@type": "type.googleapis.com/udpa.type.v1.TypedStruct",
- "typeUrl": "type.googleapis.com/envoy.tcp.metadataexchange.config.MetadataExchange",
- "value": {
- "protocol": "istio-peer-exchange"
- }
- }
- }
- ]
- },
- {
- "transportSocketMatches": [
- {
- "name": "tlsMode-istio",
- "match": {
- "tlsMode": "istio"
- },
- "transportSocket": {
- "name": "envoy.transport_sockets.tls",
- "typedConfig": {
- "@type": "type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.UpstreamTlsContext",
- "commonTlsContext": {
- "tlsCertificateSdsSecretConfigs": [
- {
- "name": "default",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- ],
- "combinedValidationContext": {
- "defaultValidationContext": {
- "matchSubjectAltNames": [
- {
- "exact": "spiffe://sam-playground-123.svc.id.goog/ns/istio-system/sa/istiod-service-account"
- }
- ]
- },
- "validationContextSdsSecretConfig": {
- "name": "ROOTCA",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- },
- "alpnProtocols": [
- "istio-peer-exchange",
- "istio"
- ]
- },
- "sni": "outbound_.853_._.istiod-asm-173-6.istio-system.svc.cluster.local"
- }
- }
- },
- {
- "name": "tlsMode-disabled",
- "match": {},
- "transportSocket": {
- "name": "envoy.transport_sockets.raw_buffer"
- }
- }
- ],
- "name": "outbound|853||istiod-asm-173-6.istio-system.svc.cluster.local",
- "type": "EDS",
- "edsClusterConfig": {
- "edsConfig": {
- "ads": {},
- "resourceApiVersion": "V3"
- },
- "serviceName": "outbound|853||istiod-asm-173-6.istio-system.svc.cluster.local"
- },
- "connectTimeout": "10s",
- "circuitBreakers": {
- "thresholds": [
- {
- "maxConnections": 4294967295,
- "maxPendingRequests": 4294967295,
- "maxRequests": 4294967295,
- "maxRetries": 4294967295
- }
- ]
- },
- "filters": [
- {
- "name": "istio.metadata_exchange",
- "typedConfig": {
- "@type": "type.googleapis.com/udpa.type.v1.TypedStruct",
- "typeUrl": "type.googleapis.com/envoy.tcp.metadataexchange.config.MetadataExchange",
- "value": {
- "protocol": "istio-peer-exchange"
- }
- }
- }
- ]
- },
- {
- "transportSocketMatches": [
- {
- "name": "tlsMode-istio",
- "match": {
- "tlsMode": "istio"
- },
- "transportSocket": {
- "name": "envoy.transport_sockets.tls",
- "typedConfig": {
- "@type": "type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.UpstreamTlsContext",
- "commonTlsContext": {
- "tlsCertificateSdsSecretConfigs": [
- {
- "name": "default",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- ],
- "combinedValidationContext": {
- "defaultValidationContext": {
- "matchSubjectAltNames": [
- {
- "exact": "spiffe://sam-playground-123.svc.id.goog/ns/istio-system/sa/istiod-service-account"
- }
- ]
- },
- "validationContextSdsSecretConfig": {
- "name": "ROOTCA",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- },
- "alpnProtocols": [
- "istio-peer-exchange",
- "istio",
- "h2"
- ]
- },
- "sni": "outbound_.15010_._.istiod-asm-173-6.istio-system.svc.cluster.local"
- }
- }
- },
- {
- "name": "tlsMode-disabled",
- "match": {},
- "transportSocket": {
- "name": "envoy.transport_sockets.raw_buffer"
- }
- }
- ],
- "name": "outbound|15010||istiod-asm-173-6.istio-system.svc.cluster.local",
- "type": "EDS",
- "edsClusterConfig": {
- "edsConfig": {
- "ads": {},
- "resourceApiVersion": "V3"
- },
- "serviceName": "outbound|15010||istiod-asm-173-6.istio-system.svc.cluster.local"
- },
- "connectTimeout": "10s",
- "circuitBreakers": {
- "thresholds": [
- {
- "maxConnections": 4294967295,
- "maxPendingRequests": 4294967295,
- "maxRequests": 4294967295,
- "maxRetries": 4294967295
- }
- ]
- },
- "http2ProtocolOptions": {
- "maxConcurrentStreams": 1073741824
- },
- "filters": [
- {
- "name": "istio.metadata_exchange",
- "typedConfig": {
- "@type": "type.googleapis.com/udpa.type.v1.TypedStruct",
- "typeUrl": "type.googleapis.com/envoy.tcp.metadataexchange.config.MetadataExchange",
- "value": {
- "protocol": "istio-peer-exchange"
- }
- }
- }
- ]
- },
- {
- "transportSocketMatches": [
- {
- "name": "tlsMode-istio",
- "match": {
- "tlsMode": "istio"
- },
- "transportSocket": {
- "name": "envoy.transport_sockets.tls",
- "typedConfig": {
- "@type": "type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.UpstreamTlsContext",
- "commonTlsContext": {
- "tlsCertificateSdsSecretConfigs": [
- {
- "name": "default",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- ],
- "combinedValidationContext": {
- "defaultValidationContext": {
- "matchSubjectAltNames": [
- {
- "exact": "spiffe://sam-playground-123.svc.id.goog/ns/istio-system/sa/istiod-service-account"
- }
- ]
- },
- "validationContextSdsSecretConfig": {
- "name": "ROOTCA",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- },
- "alpnProtocols": [
- "istio-peer-exchange",
- "istio"
- ]
- },
- "sni": "outbound_.15012_._.istiod-asm-173-6.istio-system.svc.cluster.local"
- }
- }
- },
- {
- "name": "tlsMode-disabled",
- "match": {},
- "transportSocket": {
- "name": "envoy.transport_sockets.raw_buffer"
- }
- }
- ],
- "name": "outbound|15012||istiod-asm-173-6.istio-system.svc.cluster.local",
- "type": "EDS",
- "edsClusterConfig": {
- "edsConfig": {
- "ads": {},
- "resourceApiVersion": "V3"
- },
- "serviceName": "outbound|15012||istiod-asm-173-6.istio-system.svc.cluster.local"
- },
- "connectTimeout": "10s",
- "circuitBreakers": {
- "thresholds": [
- {
- "maxConnections": 4294967295,
- "maxPendingRequests": 4294967295,
- "maxRequests": 4294967295,
- "maxRetries": 4294967295
- }
- ]
- },
- "filters": [
- {
- "name": "istio.metadata_exchange",
- "typedConfig": {
- "@type": "type.googleapis.com/udpa.type.v1.TypedStruct",
- "typeUrl": "type.googleapis.com/envoy.tcp.metadataexchange.config.MetadataExchange",
- "value": {
- "protocol": "istio-peer-exchange"
- }
- }
- }
- ]
- },
- {
- "transportSocketMatches": [
- {
- "name": "tlsMode-istio",
- "match": {
- "tlsMode": "istio"
- },
- "transportSocket": {
- "name": "envoy.transport_sockets.tls",
- "typedConfig": {
- "@type": "type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.UpstreamTlsContext",
- "commonTlsContext": {
- "tlsCertificateSdsSecretConfigs": [
- {
- "name": "default",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- ],
- "combinedValidationContext": {
- "defaultValidationContext": {
- "matchSubjectAltNames": [
- {
- "exact": "spiffe://sam-playground-123.svc.id.goog/ns/istio-system/sa/istiod-service-account"
- }
- ]
- },
- "validationContextSdsSecretConfig": {
- "name": "ROOTCA",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- },
- "alpnProtocols": [
- "istio-peer-exchange",
- "istio"
- ]
- },
- "sni": "outbound_.15014_._.istiod-asm-173-6.istio-system.svc.cluster.local"
- }
- }
- },
- {
- "name": "tlsMode-disabled",
- "match": {},
- "transportSocket": {
- "name": "envoy.transport_sockets.raw_buffer"
- }
- }
- ],
- "name": "outbound|15014||istiod-asm-173-6.istio-system.svc.cluster.local",
- "type": "EDS",
- "edsClusterConfig": {
- "edsConfig": {
- "ads": {},
- "resourceApiVersion": "V3"
- },
- "serviceName": "outbound|15014||istiod-asm-173-6.istio-system.svc.cluster.local"
- },
- "connectTimeout": "10s",
- "circuitBreakers": {
- "thresholds": [
- {
- "maxConnections": 4294967295,
- "maxPendingRequests": 4294967295,
- "maxRequests": 4294967295,
- "maxRetries": 4294967295
- }
- ]
- },
- "filters": [
- {
- "name": "istio.metadata_exchange",
- "typedConfig": {
- "@type": "type.googleapis.com/udpa.type.v1.TypedStruct",
- "typeUrl": "type.googleapis.com/envoy.tcp.metadataexchange.config.MetadataExchange",
- "value": {
- "protocol": "istio-peer-exchange"
- }
- }
- }
- ]
- },
- {
- "transportSocketMatches": [
- {
- "name": "tlsMode-istio",
- "match": {
- "tlsMode": "istio"
- },
- "transportSocket": {
- "name": "envoy.transport_sockets.tls",
- "typedConfig": {
- "@type": "type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.UpstreamTlsContext",
- "commonTlsContext": {
- "tlsCertificateSdsSecretConfigs": [
- {
- "name": "default",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- ],
- "combinedValidationContext": {
- "defaultValidationContext": {
- "matchSubjectAltNames": [
- {
- "exact": "spiffe://sam-playground-123.svc.id.goog/ns/istio-system/sa/istiod-service-account"
- }
- ]
- },
- "validationContextSdsSecretConfig": {
- "name": "ROOTCA",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- },
- "alpnProtocols": [
- "istio-peer-exchange",
- "istio"
- ]
- },
- "sni": "outbound_.443_._.istiod.istio-system.svc.cluster.local"
- }
- }
- },
- {
- "name": "tlsMode-disabled",
- "match": {},
- "transportSocket": {
- "name": "envoy.transport_sockets.raw_buffer"
- }
- }
- ],
- "name": "outbound|443||istiod.istio-system.svc.cluster.local",
- "type": "EDS",
- "edsClusterConfig": {
- "edsConfig": {
- "ads": {},
- "resourceApiVersion": "V3"
- },
- "serviceName": "outbound|443||istiod.istio-system.svc.cluster.local"
- },
- "connectTimeout": "10s",
- "circuitBreakers": {
- "thresholds": [
- {
- "maxConnections": 4294967295,
- "maxPendingRequests": 4294967295,
- "maxRequests": 4294967295,
- "maxRetries": 4294967295
- }
- ]
- },
- "filters": [
- {
- "name": "istio.metadata_exchange",
- "typedConfig": {
- "@type": "type.googleapis.com/udpa.type.v1.TypedStruct",
- "typeUrl": "type.googleapis.com/envoy.tcp.metadataexchange.config.MetadataExchange",
- "value": {
- "protocol": "istio-peer-exchange"
- }
- }
- }
- ]
- },
- {
- "transportSocketMatches": [
- {
- "name": "tlsMode-istio",
- "match": {
- "tlsMode": "istio"
- },
- "transportSocket": {
- "name": "envoy.transport_sockets.tls",
- "typedConfig": {
- "@type": "type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.UpstreamTlsContext",
- "commonTlsContext": {
- "tlsCertificateSdsSecretConfigs": [
- {
- "name": "default",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- ],
- "combinedValidationContext": {
- "defaultValidationContext": {
- "matchSubjectAltNames": [
- {
- "exact": "spiffe://sam-playground-123.svc.id.goog/ns/istio-system/sa/istiod-service-account"
- }
- ]
- },
- "validationContextSdsSecretConfig": {
- "name": "ROOTCA",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- },
- "alpnProtocols": [
- "istio-peer-exchange",
- "istio",
- "h2"
- ]
- },
- "sni": "outbound_.15010_._.istiod.istio-system.svc.cluster.local"
- }
- }
- },
- {
- "name": "tlsMode-disabled",
- "match": {},
- "transportSocket": {
- "name": "envoy.transport_sockets.raw_buffer"
- }
- }
- ],
- "name": "outbound|15010||istiod.istio-system.svc.cluster.local",
- "type": "EDS",
- "edsClusterConfig": {
- "edsConfig": {
- "ads": {},
- "resourceApiVersion": "V3"
- },
- "serviceName": "outbound|15010||istiod.istio-system.svc.cluster.local"
- },
- "connectTimeout": "10s",
- "circuitBreakers": {
- "thresholds": [
- {
- "maxConnections": 4294967295,
- "maxPendingRequests": 4294967295,
- "maxRequests": 4294967295,
- "maxRetries": 4294967295
- }
- ]
- },
- "http2ProtocolOptions": {
- "maxConcurrentStreams": 1073741824
- },
- "filters": [
- {
- "name": "istio.metadata_exchange",
- "typedConfig": {
- "@type": "type.googleapis.com/udpa.type.v1.TypedStruct",
- "typeUrl": "type.googleapis.com/envoy.tcp.metadataexchange.config.MetadataExchange",
- "value": {
- "protocol": "istio-peer-exchange"
- }
- }
- }
- ]
- },
- {
- "transportSocketMatches": [
- {
- "name": "tlsMode-istio",
- "match": {
- "tlsMode": "istio"
- },
- "transportSocket": {
- "name": "envoy.transport_sockets.tls",
- "typedConfig": {
- "@type": "type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.UpstreamTlsContext",
- "commonTlsContext": {
- "tlsCertificateSdsSecretConfigs": [
- {
- "name": "default",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- ],
- "combinedValidationContext": {
- "defaultValidationContext": {
- "matchSubjectAltNames": [
- {
- "exact": "spiffe://sam-playground-123.svc.id.goog/ns/istio-system/sa/istiod-service-account"
- }
- ]
- },
- "validationContextSdsSecretConfig": {
- "name": "ROOTCA",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- },
- "alpnProtocols": [
- "istio-peer-exchange",
- "istio"
- ]
- },
- "sni": "outbound_.15012_._.istiod.istio-system.svc.cluster.local"
- }
- }
- },
- {
- "name": "tlsMode-disabled",
- "match": {},
- "transportSocket": {
- "name": "envoy.transport_sockets.raw_buffer"
- }
- }
- ],
- "name": "outbound|15012||istiod.istio-system.svc.cluster.local",
- "type": "EDS",
- "edsClusterConfig": {
- "edsConfig": {
- "ads": {},
- "resourceApiVersion": "V3"
- },
- "serviceName": "outbound|15012||istiod.istio-system.svc.cluster.local"
- },
- "connectTimeout": "10s",
- "circuitBreakers": {
- "thresholds": [
- {
- "maxConnections": 4294967295,
- "maxPendingRequests": 4294967295,
- "maxRequests": 4294967295,
- "maxRetries": 4294967295
- }
- ]
- },
- "filters": [
- {
- "name": "istio.metadata_exchange",
- "typedConfig": {
- "@type": "type.googleapis.com/udpa.type.v1.TypedStruct",
- "typeUrl": "type.googleapis.com/envoy.tcp.metadataexchange.config.MetadataExchange",
- "value": {
- "protocol": "istio-peer-exchange"
- }
- }
- }
- ]
- },
- {
- "transportSocketMatches": [
- {
- "name": "tlsMode-istio",
- "match": {
- "tlsMode": "istio"
- },
- "transportSocket": {
- "name": "envoy.transport_sockets.tls",
- "typedConfig": {
- "@type": "type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.UpstreamTlsContext",
- "commonTlsContext": {
- "tlsCertificateSdsSecretConfigs": [
- {
- "name": "default",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- ],
- "combinedValidationContext": {
- "defaultValidationContext": {
- "matchSubjectAltNames": [
- {
- "exact": "spiffe://sam-playground-123.svc.id.goog/ns/istio-system/sa/istiod-service-account"
- }
- ]
- },
- "validationContextSdsSecretConfig": {
- "name": "ROOTCA",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- },
- "alpnProtocols": [
- "istio-peer-exchange",
- "istio"
- ]
- },
- "sni": "outbound_.15014_._.istiod.istio-system.svc.cluster.local"
- }
- }
- },
- {
- "name": "tlsMode-disabled",
- "match": {},
- "transportSocket": {
- "name": "envoy.transport_sockets.raw_buffer"
- }
- }
- ],
- "name": "outbound|15014||istiod.istio-system.svc.cluster.local",
- "type": "EDS",
- "edsClusterConfig": {
- "edsConfig": {
- "ads": {},
- "resourceApiVersion": "V3"
- },
- "serviceName": "outbound|15014||istiod.istio-system.svc.cluster.local"
- },
- "connectTimeout": "10s",
- "circuitBreakers": {
- "thresholds": [
- {
- "maxConnections": 4294967295,
- "maxPendingRequests": 4294967295,
- "maxRequests": 4294967295,
- "maxRetries": 4294967295
- }
- ]
- },
- "filters": [
- {
- "name": "istio.metadata_exchange",
- "typedConfig": {
- "@type": "type.googleapis.com/udpa.type.v1.TypedStruct",
- "typeUrl": "type.googleapis.com/envoy.tcp.metadataexchange.config.MetadataExchange",
- "value": {
- "protocol": "istio-peer-exchange"
- }
- }
- }
- ]
- },
- {
- "transportSocketMatches": [
- {
- "name": "tlsMode-istio",
- "match": {
- "tlsMode": "istio"
- },
- "transportSocket": {
- "name": "envoy.transport_sockets.tls",
- "typedConfig": {
- "@type": "type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.UpstreamTlsContext",
- "commonTlsContext": {
- "tlsCertificateSdsSecretConfigs": [
- {
- "name": "default",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- ],
- "combinedValidationContext": {
- "defaultValidationContext": {
- "matchSubjectAltNames": [
- {
- "exact": "spiffe://sam-playground-123.svc.id.goog/ns/kube-system/sa/kube-dns"
- }
- ]
- },
- "validationContextSdsSecretConfig": {
- "name": "ROOTCA",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- },
- "alpnProtocols": [
- "istio-peer-exchange",
- "istio"
- ]
- },
- "sni": "outbound_.53_._.kube-dns.kube-system.svc.cluster.local"
- }
- }
- },
- {
- "name": "tlsMode-disabled",
- "match": {},
- "transportSocket": {
- "name": "envoy.transport_sockets.raw_buffer"
- }
- }
- ],
- "name": "outbound|53||kube-dns.kube-system.svc.cluster.local",
- "type": "EDS",
- "edsClusterConfig": {
- "edsConfig": {
- "ads": {},
- "resourceApiVersion": "V3"
- },
- "serviceName": "outbound|53||kube-dns.kube-system.svc.cluster.local"
- },
- "connectTimeout": "10s",
- "circuitBreakers": {
- "thresholds": [
- {
- "maxConnections": 4294967295,
- "maxPendingRequests": 4294967295,
- "maxRequests": 4294967295,
- "maxRetries": 4294967295
- }
- ]
- },
- "filters": [
- {
- "name": "istio.metadata_exchange",
- "typedConfig": {
- "@type": "type.googleapis.com/udpa.type.v1.TypedStruct",
- "typeUrl": "type.googleapis.com/envoy.tcp.metadataexchange.config.MetadataExchange",
- "value": {
- "protocol": "istio-peer-exchange"
- }
- }
- }
- ]
- },
- {
- "transportSocketMatches": [
- {
- "name": "tlsMode-istio",
- "match": {
- "tlsMode": "istio"
- },
- "transportSocket": {
- "name": "envoy.transport_sockets.tls",
- "typedConfig": {
- "@type": "type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.UpstreamTlsContext",
- "commonTlsContext": {
- "tlsCertificateSdsSecretConfigs": [
- {
- "name": "default",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- ],
- "combinedValidationContext": {
- "defaultValidationContext": {},
- "validationContextSdsSecretConfig": {
- "name": "ROOTCA",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- },
- "alpnProtocols": [
- "istio-peer-exchange",
- "istio"
- ]
- },
- "sni": "outbound_.443_._.kubernetes.default.svc.cluster.local"
- }
- }
- },
- {
- "name": "tlsMode-disabled",
- "match": {},
- "transportSocket": {
- "name": "envoy.transport_sockets.raw_buffer"
- }
- }
- ],
- "name": "outbound|443||kubernetes.default.svc.cluster.local",
- "type": "EDS",
- "edsClusterConfig": {
- "edsConfig": {
- "ads": {},
- "resourceApiVersion": "V3"
- },
- "serviceName": "outbound|443||kubernetes.default.svc.cluster.local"
- },
- "connectTimeout": "10s",
- "circuitBreakers": {
- "thresholds": [
- {
- "maxConnections": 4294967295,
- "maxPendingRequests": 4294967295,
- "maxRequests": 4294967295,
- "maxRetries": 4294967295
- }
- ]
- },
- "filters": [
- {
- "name": "istio.metadata_exchange",
- "typedConfig": {
- "@type": "type.googleapis.com/udpa.type.v1.TypedStruct",
- "typeUrl": "type.googleapis.com/envoy.tcp.metadataexchange.config.MetadataExchange",
- "value": {
- "protocol": "istio-peer-exchange"
- }
- }
- }
- ]
- },
- {
- "transportSocketMatches": [
- {
- "name": "tlsMode-istio",
- "match": {
- "tlsMode": "istio"
- },
- "transportSocket": {
- "name": "envoy.transport_sockets.tls",
- "typedConfig": {
- "@type": "type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.UpstreamTlsContext",
- "commonTlsContext": {
- "tlsCertificateSdsSecretConfigs": [
- {
- "name": "default",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- ],
- "combinedValidationContext": {
- "defaultValidationContext": {
- "matchSubjectAltNames": [
- {
- "exact": "spiffe://sam-playground-123.svc.id.goog/ns/kube-system/sa/metrics-server"
- }
- ]
- },
- "validationContextSdsSecretConfig": {
- "name": "ROOTCA",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- },
- "alpnProtocols": [
- "istio-peer-exchange",
- "istio"
- ]
- },
- "sni": "outbound_.443_._.metrics-server.kube-system.svc.cluster.local"
- }
- }
- },
- {
- "name": "tlsMode-disabled",
- "match": {},
- "transportSocket": {
- "name": "envoy.transport_sockets.raw_buffer"
- }
- }
- ],
- "name": "outbound|443||metrics-server.kube-system.svc.cluster.local",
- "type": "EDS",
- "edsClusterConfig": {
- "edsConfig": {
- "ads": {},
- "resourceApiVersion": "V3"
- },
- "serviceName": "outbound|443||metrics-server.kube-system.svc.cluster.local"
- },
- "connectTimeout": "10s",
- "circuitBreakers": {
- "thresholds": [
- {
- "maxConnections": 4294967295,
- "maxPendingRequests": 4294967295,
- "maxRequests": 4294967295,
- "maxRetries": 4294967295
- }
- ]
- },
- "filters": [
- {
- "name": "istio.metadata_exchange",
- "typedConfig": {
- "@type": "type.googleapis.com/udpa.type.v1.TypedStruct",
- "typeUrl": "type.googleapis.com/envoy.tcp.metadataexchange.config.MetadataExchange",
- "value": {
- "protocol": "istio-peer-exchange"
- }
- }
- }
- ]
- },
- {
- "transportSocketMatches": [
- {
- "name": "tlsMode-istio",
- "match": {
- "tlsMode": "istio"
- },
- "transportSocket": {
- "name": "envoy.transport_sockets.tls",
- "typedConfig": {
- "@type": "type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.UpstreamTlsContext",
- "commonTlsContext": {
- "tlsCertificateSdsSecretConfigs": [
- {
- "name": "default",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- ],
- "combinedValidationContext": {
- "defaultValidationContext": {
- "matchSubjectAltNames": [
- {
- "exact": "spiffe://sam-playground-123.svc.id.goog/ns/config-management-system/sa/monitor"
- }
- ]
- },
- "validationContextSdsSecretConfig": {
- "name": "ROOTCA",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- },
- "alpnProtocols": [
- "istio-peer-exchange",
- "istio"
- ]
- },
- "sni": "outbound_.8675_._.monitor.config-management-system.svc.cluster.local"
- }
- }
- },
- {
- "name": "tlsMode-disabled",
- "match": {},
- "transportSocket": {
- "name": "envoy.transport_sockets.raw_buffer"
- }
- }
- ],
- "name": "outbound|8675||monitor.config-management-system.svc.cluster.local",
- "type": "EDS",
- "edsClusterConfig": {
- "edsConfig": {
- "ads": {},
- "resourceApiVersion": "V3"
- },
- "serviceName": "outbound|8675||monitor.config-management-system.svc.cluster.local"
- },
- "connectTimeout": "10s",
- "circuitBreakers": {
- "thresholds": [
- {
- "maxConnections": 4294967295,
- "maxPendingRequests": 4294967295,
- "maxRequests": 4294967295,
- "maxRetries": 4294967295
- }
- ]
- },
- "filters": [
- {
- "name": "istio.metadata_exchange",
- "typedConfig": {
- "@type": "type.googleapis.com/udpa.type.v1.TypedStruct",
- "typeUrl": "type.googleapis.com/envoy.tcp.metadataexchange.config.MetadataExchange",
- "value": {
- "protocol": "istio-peer-exchange"
- }
- }
- }
- ]
- },
- {
- "transportSocketMatches": [
- {
- "name": "tlsMode-istio",
- "match": {
- "tlsMode": "istio"
- },
- "transportSocket": {
- "name": "envoy.transport_sockets.tls",
- "typedConfig": {
- "@type": "type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.UpstreamTlsContext",
- "commonTlsContext": {
- "tlsCertificateSdsSecretConfigs": [
- {
- "name": "default",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- ],
- "combinedValidationContext": {
- "defaultValidationContext": {
- "matchSubjectAltNames": [
- {
- "exact": "spiffe://sam-playground-123.svc.id.goog/ns/hipster/sa/default"
- }
- ]
- },
- "validationContextSdsSecretConfig": {
- "name": "ROOTCA",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- },
- "alpnProtocols": [
- "istio-peer-exchange",
- "istio",
- "h2"
- ]
- },
- "sni": "outbound_.50051_._.paymentservice.hipster.svc.cluster.local"
- }
- }
- },
- {
- "name": "tlsMode-disabled",
- "match": {},
- "transportSocket": {
- "name": "envoy.transport_sockets.raw_buffer"
- }
- }
- ],
- "name": "outbound|50051||paymentservice.hipster.svc.cluster.local",
- "type": "EDS",
- "edsClusterConfig": {
- "edsConfig": {
- "ads": {},
- "resourceApiVersion": "V3"
- },
- "serviceName": "outbound|50051||paymentservice.hipster.svc.cluster.local"
- },
- "connectTimeout": "10s",
- "circuitBreakers": {
- "thresholds": [
- {
- "maxConnections": 4294967295,
- "maxPendingRequests": 4294967295,
- "maxRequests": 4294967295,
- "maxRetries": 4294967295
- }
- ]
- },
- "http2ProtocolOptions": {
- "maxConcurrentStreams": 1073741824
- },
- "filters": [
- {
- "name": "istio.metadata_exchange",
- "typedConfig": {
- "@type": "type.googleapis.com/udpa.type.v1.TypedStruct",
- "typeUrl": "type.googleapis.com/envoy.tcp.metadataexchange.config.MetadataExchange",
- "value": {
- "protocol": "istio-peer-exchange"
- }
- }
- }
- ]
- },
- {
- "name": "outbound|16221||pg-2dbb5e59-google-bc39.aivencloud.com",
- "type": "ORIGINAL_DST",
- "connectTimeout": "10s",
- "lbPolicy": "CLUSTER_PROVIDED",
- "circuitBreakers": {
- "thresholds": [
- {
- "maxConnections": 4294967295,
- "maxPendingRequests": 4294967295,
- "maxRequests": 4294967295,
- "maxRetries": 4294967295
- }
- ]
- },
- "transportSocket": {
- "name": "envoy.transport_sockets.tls",
- "typedConfig": {
- "@type": "type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.UpstreamTlsContext",
- "commonTlsContext": {
- "combinedValidationContext": {
- "defaultValidationContext": {},
- "validationContextSdsSecretConfig": {
- "name": "file-root:/etc/certs/aiven-ca.crt",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "resourceApiVersion": "V3"
- }
- }
- }
- }
- }
- },
- "metadata": {
- "filterMetadata": {
- "istio": {
- "config": "/apis/networking.istio.io/v1alpha3/namespaces/postgres/destination-rule/external-aiven-postgres"
- }
- }
- },
- "filters": [
- {
- "name": "istio.metadata_exchange",
- "typedConfig": {
- "@type": "type.googleapis.com/udpa.type.v1.TypedStruct",
- "typeUrl": "type.googleapis.com/envoy.tcp.metadataexchange.config.MetadataExchange",
- "value": {
- "protocol": "istio-peer-exchange"
- }
- }
- }
- ]
- },
- {
- "transportSocketMatches": [
- {
- "name": "tlsMode-istio",
- "match": {
- "tlsMode": "istio"
- },
- "transportSocket": {
- "name": "envoy.transport_sockets.tls",
- "typedConfig": {
- "@type": "type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.UpstreamTlsContext",
- "commonTlsContext": {
- "tlsCertificateSdsSecretConfigs": [
- {
- "name": "default",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- ],
- "combinedValidationContext": {
- "defaultValidationContext": {
- "matchSubjectAltNames": [
- {
- "exact": "spiffe://sam-playground-123.svc.id.goog/ns/postgres/sa/default"
- }
- ]
- },
- "validationContextSdsSecretConfig": {
- "name": "ROOTCA",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- },
- "alpnProtocols": [
- "istio-peer-exchange",
- "istio"
- ]
- },
- "sni": "outbound_.80_._.pgadmin4.postgres.svc.cluster.local"
- }
- }
- },
- {
- "name": "tlsMode-disabled",
- "match": {},
- "transportSocket": {
- "name": "envoy.transport_sockets.raw_buffer"
- }
- }
- ],
- "name": "outbound|80||pgadmin4.postgres.svc.cluster.local",
- "type": "EDS",
- "edsClusterConfig": {
- "edsConfig": {
- "ads": {},
- "resourceApiVersion": "V3"
- },
- "serviceName": "outbound|80||pgadmin4.postgres.svc.cluster.local"
- },
- "connectTimeout": "10s",
- "circuitBreakers": {
- "thresholds": [
- {
- "maxConnections": 4294967295,
- "maxPendingRequests": 4294967295,
- "maxRequests": 4294967295,
- "maxRetries": 4294967295
- }
- ]
- },
- "filters": [
- {
- "name": "istio.metadata_exchange",
- "typedConfig": {
- "@type": "type.googleapis.com/udpa.type.v1.TypedStruct",
- "typeUrl": "type.googleapis.com/envoy.tcp.metadataexchange.config.MetadataExchange",
- "value": {
- "protocol": "istio-peer-exchange"
- }
- }
- }
- ]
- },
- {
- "transportSocketMatches": [
- {
- "name": "tlsMode-istio",
- "match": {
- "tlsMode": "istio"
- },
- "transportSocket": {
- "name": "envoy.transport_sockets.tls",
- "typedConfig": {
- "@type": "type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.UpstreamTlsContext",
- "commonTlsContext": {
- "tlsCertificateSdsSecretConfigs": [
- {
- "name": "default",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- ],
- "combinedValidationContext": {
- "defaultValidationContext": {
- "matchSubjectAltNames": [
- {
- "exact": "spiffe://sam-playground-123.svc.id.goog/ns/hipster/sa/default"
- }
- ]
- },
- "validationContextSdsSecretConfig": {
- "name": "ROOTCA",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- },
- "alpnProtocols": [
- "istio-peer-exchange",
- "istio",
- "h2"
- ]
- },
- "sni": "outbound_.3550_._.productcatalogservice.hipster.svc.cluster.local"
- }
- }
- },
- {
- "name": "tlsMode-disabled",
- "match": {},
- "transportSocket": {
- "name": "envoy.transport_sockets.raw_buffer"
- }
- }
- ],
- "name": "outbound|3550||productcatalogservice.hipster.svc.cluster.local",
- "type": "EDS",
- "edsClusterConfig": {
- "edsConfig": {
- "ads": {},
- "resourceApiVersion": "V3"
- },
- "serviceName": "outbound|3550||productcatalogservice.hipster.svc.cluster.local"
- },
- "connectTimeout": "10s",
- "circuitBreakers": {
- "thresholds": [
- {
- "maxConnections": 4294967295,
- "maxPendingRequests": 4294967295,
- "maxRequests": 4294967295,
- "maxRetries": 4294967295
- }
- ]
- },
- "http2ProtocolOptions": {
- "maxConcurrentStreams": 1073741824
- },
- "filters": [
- {
- "name": "istio.metadata_exchange",
- "typedConfig": {
- "@type": "type.googleapis.com/udpa.type.v1.TypedStruct",
- "typeUrl": "type.googleapis.com/envoy.tcp.metadataexchange.config.MetadataExchange",
- "value": {
- "protocol": "istio-peer-exchange"
- }
- }
- }
- ]
- },
- {
- "name": "prometheus_stats",
- "type": "STATIC",
- "connectTimeout": "0.250s",
- "loadAssignment": {
- "clusterName": "prometheus_stats",
- "endpoints": [
- {
- "lbEndpoints": [
- {
- "endpoint": {
- "address": {
- "socketAddress": {
- "address": "127.0.0.1",
- "portValue": 15000
- }
- }
- }
- }
- ]
- }
- ]
- }
- },
- {
- "transportSocketMatches": [
- {
- "name": "tlsMode-istio",
- "match": {
- "tlsMode": "istio"
- },
- "transportSocket": {
- "name": "envoy.transport_sockets.tls",
- "typedConfig": {
- "@type": "type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.UpstreamTlsContext",
- "commonTlsContext": {
- "tlsCertificateSdsSecretConfigs": [
- {
- "name": "default",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- ],
- "combinedValidationContext": {
- "defaultValidationContext": {
- "matchSubjectAltNames": [
- {
- "exact": "spiffe://sam-playground-123.svc.id.goog/ns/hipster/sa/default"
- }
- ]
- },
- "validationContextSdsSecretConfig": {
- "name": "ROOTCA",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- },
- "alpnProtocols": [
- "istio-peer-exchange",
- "istio",
- "h2"
- ]
- },
- "sni": "outbound_.8080_._.recommendationservice.hipster.svc.cluster.local"
- }
- }
- },
- {
- "name": "tlsMode-disabled",
- "match": {},
- "transportSocket": {
- "name": "envoy.transport_sockets.raw_buffer"
- }
- }
- ],
- "name": "outbound|8080||recommendationservice.hipster.svc.cluster.local",
- "type": "EDS",
- "edsClusterConfig": {
- "edsConfig": {
- "ads": {},
- "resourceApiVersion": "V3"
- },
- "serviceName": "outbound|8080||recommendationservice.hipster.svc.cluster.local"
- },
- "connectTimeout": "10s",
- "circuitBreakers": {
- "thresholds": [
- {
- "maxConnections": 4294967295,
- "maxPendingRequests": 4294967295,
- "maxRequests": 4294967295,
- "maxRetries": 4294967295
- }
- ]
- },
- "http2ProtocolOptions": {
- "maxConcurrentStreams": 1073741824
- },
- "filters": [
- {
- "name": "istio.metadata_exchange",
- "typedConfig": {
- "@type": "type.googleapis.com/udpa.type.v1.TypedStruct",
- "typeUrl": "type.googleapis.com/envoy.tcp.metadataexchange.config.MetadataExchange",
- "value": {
- "protocol": "istio-peer-exchange"
- }
- }
- }
- ]
- },
- {
- "name": "outbound|16222||redis-1425a1d9-google-bc39.aivencloud.com",
- "type": "ORIGINAL_DST",
- "connectTimeout": "10s",
- "lbPolicy": "CLUSTER_PROVIDED",
- "circuitBreakers": {
- "thresholds": [
- {
- "maxConnections": 4294967295,
- "maxPendingRequests": 4294967295,
- "maxRequests": 4294967295,
- "maxRetries": 4294967295
- }
- ]
- },
- "transportSocket": {
- "name": "envoy.transport_sockets.tls",
- "typedConfig": {
- "@type": "type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.UpstreamTlsContext",
- "commonTlsContext": {
- "validationContext": {}
- }
- }
- },
- "metadata": {
- "filterMetadata": {
- "istio": {
- "config": "/apis/networking.istio.io/v1alpha3/namespaces/redis/destination-rule/external-aiven-redis"
- }
- }
- },
- "filters": [
- {
- "name": "istio.metadata_exchange",
- "typedConfig": {
- "@type": "type.googleapis.com/udpa.type.v1.TypedStruct",
- "typeUrl": "type.googleapis.com/envoy.tcp.metadataexchange.config.MetadataExchange",
- "value": {
- "protocol": "istio-peer-exchange"
- }
- }
- }
- ]
- },
- {
- "transportSocketMatches": [
- {
- "name": "tlsMode-istio",
- "match": {
- "tlsMode": "istio"
- },
- "transportSocket": {
- "name": "envoy.transport_sockets.tls",
- "typedConfig": {
- "@type": "type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.UpstreamTlsContext",
- "commonTlsContext": {
- "tlsCertificateSdsSecretConfigs": [
- {
- "name": "default",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- ],
- "combinedValidationContext": {
- "defaultValidationContext": {
- "matchSubjectAltNames": [
- {
- "exact": "spiffe://sam-playground-123.svc.id.goog/ns/hipster/sa/default"
- }
- ]
- },
- "validationContextSdsSecretConfig": {
- "name": "ROOTCA",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- },
- "alpnProtocols": [
- "istio-peer-exchange",
- "istio"
- ]
- },
- "sni": "outbound_.6379_._.redis-cart.hipster.svc.cluster.local"
- }
- }
- },
- {
- "name": "tlsMode-disabled",
- "match": {},
- "transportSocket": {
- "name": "envoy.transport_sockets.raw_buffer"
- }
- }
- ],
- "name": "outbound|6379||redis-cart.hipster.svc.cluster.local",
- "type": "EDS",
- "edsClusterConfig": {
- "edsConfig": {
- "ads": {},
- "resourceApiVersion": "V3"
- },
- "serviceName": "outbound|6379||redis-cart.hipster.svc.cluster.local"
- },
- "connectTimeout": "10s",
- "circuitBreakers": {
- "thresholds": [
- {
- "maxConnections": 4294967295,
- "maxPendingRequests": 4294967295,
- "maxRequests": 4294967295,
- "maxRetries": 4294967295
- }
- ]
- },
- "filters": [
- {
- "name": "istio.metadata_exchange",
- "typedConfig": {
- "@type": "type.googleapis.com/udpa.type.v1.TypedStruct",
- "typeUrl": "type.googleapis.com/envoy.tcp.metadataexchange.config.MetadataExchange",
- "value": {
- "protocol": "istio-peer-exchange"
- }
- }
- }
- ]
- },
- {
- "name": "sds-grpc",
- "type": "STATIC",
- "connectTimeout": "1s",
- "loadAssignment": {
- "clusterName": "sds-grpc",
- "endpoints": [
- {
- "lbEndpoints": [
- {
- "endpoint": {
- "address": {
- "pipe": {
- "path": "./etc/istio/proxy/SDS"
- }
- }
- }
- }
- ]
- }
- ]
- },
- "http2ProtocolOptions": {}
- },
- {
- "transportSocketMatches": [
- {
- "name": "tlsMode-istio",
- "match": {
- "tlsMode": "istio"
- },
- "transportSocket": {
- "name": "envoy.transport_sockets.tls",
- "typedConfig": {
- "@type": "type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.UpstreamTlsContext",
- "commonTlsContext": {
- "tlsCertificateSdsSecretConfigs": [
- {
- "name": "default",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- ],
- "combinedValidationContext": {
- "defaultValidationContext": {
- "matchSubjectAltNames": [
- {
- "exact": "spiffe://sam-playground-123.svc.id.goog/ns/hipster/sa/default"
- }
- ]
- },
- "validationContextSdsSecretConfig": {
- "name": "ROOTCA",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- },
- "alpnProtocols": [
- "istio-peer-exchange",
- "istio",
- "h2"
- ]
- },
- "sni": "outbound_.50051_._.shippingservice.hipster.svc.cluster.local"
- }
- }
- },
- {
- "name": "tlsMode-disabled",
- "match": {},
- "transportSocket": {
- "name": "envoy.transport_sockets.raw_buffer"
- }
- }
- ],
- "name": "outbound|50051||shippingservice.hipster.svc.cluster.local",
- "type": "EDS",
- "edsClusterConfig": {
- "edsConfig": {
- "ads": {},
- "resourceApiVersion": "V3"
- },
- "serviceName": "outbound|50051||shippingservice.hipster.svc.cluster.local"
- },
- "connectTimeout": "10s",
- "circuitBreakers": {
- "thresholds": [
- {
- "maxConnections": 4294967295,
- "maxPendingRequests": 4294967295,
- "maxRequests": 4294967295,
- "maxRetries": 4294967295
- }
- ]
- },
- "http2ProtocolOptions": {
- "maxConcurrentStreams": 1073741824
- },
- "filters": [
- {
- "name": "istio.metadata_exchange",
- "typedConfig": {
- "@type": "type.googleapis.com/udpa.type.v1.TypedStruct",
- "typeUrl": "type.googleapis.com/envoy.tcp.metadataexchange.config.MetadataExchange",
- "value": {
- "protocol": "istio-peer-exchange"
- }
- }
- }
- ]
- },
- {
- "transportSocketMatches": [
- {
- "name": "tlsMode-istio",
- "match": {
- "tlsMode": "istio"
- },
- "transportSocket": {
- "name": "envoy.transport_sockets.tls",
- "typedConfig": {
- "@type": "type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.UpstreamTlsContext",
- "commonTlsContext": {
- "tlsCertificateSdsSecretConfigs": [
- {
- "name": "default",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- ],
- "combinedValidationContext": {
- "defaultValidationContext": {
- "matchSubjectAltNames": [
- {
- "exact": "spiffe://sam-playground-123.svc.id.goog/ns/sample/sa/sleep"
- }
- ]
- },
- "validationContextSdsSecretConfig": {
- "name": "ROOTCA",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- },
- "alpnProtocols": [
- "istio-peer-exchange",
- "istio"
- ]
- },
- "sni": "outbound_.80_._.sleep.sample.svc.cluster.local"
- }
- }
- },
- {
- "name": "tlsMode-disabled",
- "match": {},
- "transportSocket": {
- "name": "envoy.transport_sockets.raw_buffer"
- }
- }
- ],
- "name": "outbound|80||sleep.sample.svc.cluster.local",
- "type": "EDS",
- "edsClusterConfig": {
- "edsConfig": {
- "ads": {},
- "resourceApiVersion": "V3"
- },
- "serviceName": "outbound|80||sleep.sample.svc.cluster.local"
- },
- "connectTimeout": "10s",
- "circuitBreakers": {
- "thresholds": [
- {
- "maxConnections": 4294967295,
- "maxPendingRequests": 4294967295,
- "maxRequests": 4294967295,
- "maxRetries": 4294967295
- }
- ]
- },
- "filters": [
- {
- "name": "istio.metadata_exchange",
- "typedConfig": {
- "@type": "type.googleapis.com/udpa.type.v1.TypedStruct",
- "typeUrl": "type.googleapis.com/envoy.tcp.metadataexchange.config.MetadataExchange",
- "value": {
- "protocol": "istio-peer-exchange"
- }
- }
- }
- ]
- },
- {
- "name": "xds-grpc",
- "type": "STRICT_DNS",
- "connectTimeout": "1s",
- "loadAssignment": {
- "clusterName": "xds-grpc",
- "endpoints": [
- {
- "lbEndpoints": [
- {
- "endpoint": {
- "address": {
- "socketAddress": {
- "address": "istiod-asm-173-6.istio-system.svc",
- "portValue": 15012
- }
- }
- }
- }
- ]
- }
- ]
- },
- "maxRequestsPerConnection": 1,
- "circuitBreakers": {
- "thresholds": [
- {
- "maxConnections": 100000,
- "maxPendingRequests": 100000,
- "maxRequests": 100000
- },
- {
- "priority": "HIGH",
- "maxConnections": 100000,
- "maxPendingRequests": 100000,
- "maxRequests": 100000
- }
- ]
- },
- "http2ProtocolOptions": {},
- "respectDnsTtl": true,
- "dnsLookupFamily": "V4_ONLY",
- "transportSocket": {
- "name": "envoy.transport_sockets.tls",
- "typedConfig": {
- "@type": "type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.UpstreamTlsContext",
- "commonTlsContext": {
- "tlsCertificateSdsSecretConfigs": [
- {
- "name": "default",
- "sdsConfig": {
- "apiConfigSource": {
- "apiType": "GRPC",
- "transportApiVersion": "V3",
- "grpcServices": [
- {
- "envoyGrpc": {
- "clusterName": "sds-grpc"
- }
- }
- ]
- },
- "initialFetchTimeout": "0s",
- "resourceApiVersion": "V3"
- }
- }
- ],
- "validationContext": {
- "trustedCa": {
- "filename": "./var/run/secrets/kubernetes.io/serviceaccount/ca.crt"
- },
- "matchSubjectAltNames": [
- {
- "exact": "istiod-asm-173-6.istio-system.svc"
- }
- ]
- },
- "alpnProtocols": [
- "h2"
- ]
- },
- "sni": "istiod-asm-173-6.istio-system.svc"
- }
- },
- "upstreamConnectionOptions": {
- "tcpKeepalive": {
- "keepaliveTime": 300
- }
- }
- },
- {
- "name": "zipkin",
- "type": "STRICT_DNS",
- "connectTimeout": "1s",
- "loadAssignment": {
- "clusterName": "zipkin",
- "endpoints": [
- {
- "lbEndpoints": [
- {
- "endpoint": {
- "address": {
- "socketAddress": {
- "address": "zipkin.istio-system",
- "portValue": 9411
- }
- }
- }
- }
- ]
- }
- ]
- },
- "respectDnsTtl": true,
- "dnsLookupFamily": "V4_ONLY"
- }
- ]
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement