Istio
Contents
Istio#
见我的另一本开源书:《Istio & Envoy 内幕》
- Istio mTLS
- Istio mTLS 自动识别说明(Smartness Explained)
- Understanding Istio’s Secure Naming
- Metadata Exchange
- Istio ALPN
- Istio Gateway TCP Keepalive
Design Doc Links#
This doc tracks the design doc links in order to facilitate Istio design docs discovery. To avoid confusion, only approved docs or the docs with wide impact in Istio’s roadmap can be listed here.
It’s each developer’s own responsibility to add doc links here.
Nebulous Future#
Mesh TroubleShooting RFC introduced a trouble shooting API to allow us make sidecar out of the pod.
Release 1.4#
Istio Auto mTLS, addresses the common UX pain for configuring
DestinationRule.TLSSettings
in order to opt-in Istio mutual TLS.Isito Authorization v2 Beta policy, is focused on evolving authorization policy to workload based selector, rather service based model, with other UX improvements.
Better Default Networking, Protocol Sniffing, enables protocol sniffing for inbound listeners and HTTP2.
Istio Operator Architecture, explains how the new Istio operator works, in replace of the Helm. The original design doc can be found here
Istio Metadata Exchange for MixerV2 under mTLS, implementation notes
Release 1.3#
Better Default Networks, explains the mechanism to how to reduce the UX overhead of declaring service port name explicitly.
Release 1.1#
Sidecar, TODO: link