Share via

Traefik Loadbalancer is enabled in my AKS cluster needs to use istio service mesh for mtls

Naga Teja 0 Reputation points
2024-06-27T07:09:07.4633333+00:00

Traefik Loadbalancer is used as external loadbalancer need to use istio for mtls in my AKS cluster if i enable istio addon will it help for me to set up only mtls without loadbalancer.
The aim is to make communication between the pods using istio and external communication using traefik.

Azure Kubernetes Service
Azure Kubernetes Service
An Azure service that provides serverless Kubernetes, an integrated continuous integration and continuous delivery experience, and enterprise-grade security and governance.
2,467 questions

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Andriy Bilous 11,821 Reputation points MVP Volunteer Moderator
    2024-06-30T20:51:04.9766667+00:00

    Hello Naga Teja

    To make a bit more clarification:

    The Istio-based service mesh add-on for Azure Kubernetes Service (AKS) provides an officially supported and tested integration with Istio.

    When communication occurs between your application pods (inside the AKS cluster), Istio takes over.

    Istio add-on is a valid approach for achieving mTLS and other service mesh features.

    User's image

    https://thenewstack.io/using-traefik-ingress-controller-with-istio-service-mesh/

    There are also some limitations to consider:

    • The add-on doesn't work on AKS clusters that have Istio installed on them already outside the add-on installation.
    • The add-on doesn't support adding pods associated with virtual nodes to be added under the mesh.
    • Istio doesn't support Windows Server containers.

    https://learn.microsoft.com/en-us/azure/aks/istio-about

    0 comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.