Daniel's Tech Blog

Cloud Computing, Cloud Native & Kubernetes

Tag: Networking

  • Using Istio with Kubernetes native sidecars on Azure Kubernetes Service

    In my previous blog post, I showed you how to check for specific feature gates on an Azure Kubernetes Service cluster. -> https://www.danielstechblog.io/show-enabled-feature-gates-on-an-azure-kubernetes-service-cluster/ Especially for the SidecarContainers feature gate, which is enabled on Azure Kubernetes Service running Kubernetes version 1.29 or higher. The SidecarContainers feature gate brings support for running sidecar containers as init containers. For instance, a service…

  • Using HTTP status code 307/308 for HTTPS redirect with the Istio ingress gateway

    The gateway definition for the Istio ingress gateway provides a configuration parameter to enable the HTTPS redirect of HTTP connections. -> https://istio.io/latest/docs/reference/config/networking/gateway/#ServerTLSSettings apiVersion: networking.istio.io/v1beta1 kind: Gateway metadata: name: azst-aks-gateway namespace: istio-config spec: selector: istio: ingressgateway # use Istio default gateway implementation servers: – hosts: – “*.danielstechblog.de” port: number: 80 name: http protocol: HTTP tls: httpsRedirect:…

  • Azure Load Testing news

    I have been using Azure Load Testing for my Azure Chaos Studio demos for a while now. The service provides an on-demand infrastructure to run your load tests as a managed service. Recently, the service received some significant updates I like to share with you. The first update targets the test duration. Previously limited to…

  • Configuring Istio using the Kubernetes Gateway API

    The Kubernetes Gateway API is the successor of the Kubernetes Ingress API and is currently in beta state. More and more projects add support for the Gateway API like Istio. -> https://istio.io/latest/blog/2022/gateway-api-beta/ -> https://istio.io/latest/blog/2022/getting-started-gtwapi/ In today’s blog post, I walk you through how to configure Istio using the Kubernetes Gateway API. At the time of…

  • Preventing SNAT port exhaustion on Azure Kubernetes Service with Virtual Network NAT

    Last year I have written a blog post about detecting SNAT port exhaustion on Azure Kubernetes Service. -> https://www.danielstechblog.io/detecting-snat-port-exhaustion-on-azure-kubernetes-service/ Today we dive into the topic of how to prevent SNAT port exhaustion on Azure Kubernetes Service with Virtual Network NAT. Since this year the managed NAT gateway option for Azure Kubernetes Service is generally available…

  • Run the Istio ingress gateway with TLS termination and TLS passthrough

    The Istio ingress gateway supports two modes for dealing with TLS traffic: TLS termination and TLS passthrough. Running Istio with TLS termination is the default and standard configuration for most installations. Incoming TLS traffic is terminated at the Istio ingress gateway level and then sent to the destination service encrypted via mTLS within the service…

WordPress Cookie Notice by Real Cookie Banner