Created
January 17, 2019 15:08
-
-
Save iolalla/44f23027dabf02a6b8889ea983e8be3c to your computer and use it in GitHub Desktop.
If you have a GKE cluster on GCP and want to access the google APIs or any resource outside the cluster you need to have a service entry in the egress proxy
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ########################################################################################################################## | |
| # External Services Istio | |
| ######################################################################################################################### | |
| apiVersion: networking.istio.io/v1alpha3 | |
| kind: ServiceEntry | |
| metadata: | |
| name: external-svc-https | |
| spec: | |
| hosts: | |
| - www.googleapis.com #bigquery | |
| - pubsub.googleapis.com #pubsub | |
| - 136.237.338.439 #postgresql Obviously use yours | |
| - 10.10.10.10 #Internal Postgresql | |
| location: MESH_EXTERNAL | |
| ports: | |
| - number: 443 | |
| name: https | |
| protocol: HTTPS | |
| - number: 80 | |
| name: http | |
| protocol: HTTP | |
| resolution: DNS |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment