noah8713/envoy-gw-config-dump-dev.txt

## envoy-gw-config-dump-dev.txt
- altStatName: httpbin-dev.httpbin-dev.svc.130.xx.io.port.8000.app_inst.httpbin-dev.app_svc.unknown
  circuitBreakers:
    thresholds:
    - maxConnections: 20000
      maxPendingRequests: 20000
      maxRequests: 20000
      maxRetries: 20000
      trackRemaining: true
  connectTimeout: 1s
  edsClusterConfig:
    edsConfig:
      ads: {}
      initialFetchTimeout: 0s
      resourceApiVersion: V3
    serviceName: outbound|8000||httpbin-dev.httpbin-dev.svc.130.xx.io
  filters:
  - name: istio.metadata_exchange
    typedConfig:
      '@type': type.googleapis.com/udpa.type.v1.TypedStruct
      typeUrl: type.googleapis.com/envoy.tcp.metadataexchange.config.MetadataExchange
      value:
        protocol: istio-peer-exchange
  lbSubsetConfig:
    fallbackPolicy: ANY_ENDPOINT
    subsetSelectors:
    - fallbackPolicy: NO_FALLBACK
      keys:
      - endpoint-ip
  metadata:
    filterMetadata:
      istio:
        config: /apis/networking.istio.io/v1alpha3/namespaces/istio-dev/destination-rule/default-traffic-policy
        default_original_port: 8000
        services:
        - host: httpbin-dev.httpbin-dev.svc.130.xx.io
          name: httpbin-dev
          namespace: httpbin-dev
  name: outbound|8000||httpbin-dev.httpbin-dev.svc.130.xx.io
  transportSocketMatches:
  - match:
      tlsMode: istio
    name: tlsMode-istio
    transportSocket:
      name: envoy.transport_sockets.tls
      typedConfig:
        '@type': type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.UpstreamTlsContext
        commonTlsContext:
          alpnProtocols:
          - istio-peer-exchange
          - istio
          combinedValidationContext:
            defaultValidationContext:
              matchSubjectAltNames:
              - exact: spiffe://dev.xx.io/ns/httpbin-dev/sa/default
            validationContextSdsSecretConfig:
              name: ROOTCA
              sdsConfig:
                apiConfigSource:
                  apiType: GRPC
                  grpcServices:
                  - envoyGrpc:
                      clusterName: sds-grpc
                  setNodeOnFirstMessageOnly: true
                  transportApiVersion: V3
                initialFetchTimeout: 0s
                resourceApiVersion: V3
          tlsCertificateSdsSecretConfigs:
          - name: default
            sdsConfig:
              apiConfigSource:
                apiType: GRPC
                grpcServices:
                - envoyGrpc:
                    clusterName: sds-grpc
                setNodeOnFirstMessageOnly: true
                transportApiVersion: V3
              initialFetchTimeout: 0s
              resourceApiVersion: V3
        sni: outbound_.8000_._.httpbin-dev.httpbin-dev.svc.130.xx.io
  - match: {}
    name: tlsMode-disabled
    transportSocket:
      name: envoy.transport_sockets.raw_buffer
  type: EDS
  typedExtensionProtocolOptions:
    envoy.extensions.upstreams.http.v3.HttpProtocolOptions:
      '@type': type.googleapis.com/envoy.extensions.upstreams.http.v3.HttpProtocolOptions
      commonHttpProtocolOptions:
        idleTimeout: 60s
      explicitHttpConfig:
        httpProtocolOptions: {}
  upstreamConnectionOptions:
    tcpKeepalive:
      keepaliveInterval: 10
      keepaliveProbes: 10
      keepaliveTime: 700
- altStatName: httpbin-dev.httpbin-dev.svc.130.xx.io.port.8001.app_inst.httpbin-dev.app_svc.unknown
  circuitBreakers:
    thresholds:
    - maxConnections: 20000
      maxPendingRequests: 20000
      maxRequests: 20000
      maxRetries: 20000
      trackRemaining: true
  connectTimeout: 1s
  edsClusterConfig:
    edsConfig:
      ads: {}
      initialFetchTimeout: 0s
      resourceApiVersion: V3
    serviceName: outbound|8001||httpbin-dev.httpbin-dev.svc.130.xx.io
  filters:
  - name: istio.metadata_exchange
    typedConfig:
      '@type': type.googleapis.com/udpa.type.v1.TypedStruct
      typeUrl: type.googleapis.com/envoy.tcp.metadataexchange.config.MetadataExchange
      value:
        protocol: istio-peer-exchange
  lbSubsetConfig:
    fallbackPolicy: ANY_ENDPOINT
    subsetSelectors:
    - fallbackPolicy: NO_FALLBACK
      keys:
      - endpoint-ip
  metadata:
    filterMetadata:
      istio:
        config: /apis/networking.istio.io/v1alpha3/namespaces/istio-dev/destination-rule/default-traffic-policy
        default_original_port: 8001
        services:
        - host: httpbin-dev.httpbin-dev.svc.130.xx.io
          name: httpbin-dev
          namespace: httpbin-dev
  name: outbound|8001||httpbin-dev.httpbin-dev.svc.130.xx.io
  transportSocketMatches:
  - match:
      tlsMode: istio
    name: tlsMode-istio
    transportSocket:
      name: envoy.transport_sockets.tls
      typedConfig:
        '@type': type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.UpstreamTlsContext
        commonTlsContext:
          alpnProtocols:
          - istio-peer-exchange
          - istio
          combinedValidationContext:
            defaultValidationContext:
              matchSubjectAltNames:
              - exact: spiffe://dev.xx.io/ns/httpbin-dev/sa/default
            validationContextSdsSecretConfig:
              name: ROOTCA
              sdsConfig:
                apiConfigSource:
                  apiType: GRPC
                  grpcServices:
                  - envoyGrpc:
                      clusterName: sds-grpc
                  setNodeOnFirstMessageOnly: true
                  transportApiVersion: V3
                initialFetchTimeout: 0s
                resourceApiVersion: V3
          tlsCertificateSdsSecretConfigs:
          - name: default
            sdsConfig:
              apiConfigSource:
                apiType: GRPC
                grpcServices:
                - envoyGrpc:
                    clusterName: sds-grpc
                setNodeOnFirstMessageOnly: true
                transportApiVersion: V3
              initialFetchTimeout: 0s
              resourceApiVersion: V3
        sni: outbound_.8001_._.httpbin-dev.httpbin-dev.svc.130.xx.io
  - match: {}
    name: tlsMode-disabled
    transportSocket:
      name: envoy.transport_sockets.raw_buffer
  type: EDS
  typedExtensionProtocolOptions:
    envoy.extensions.upstreams.http.v3.HttpProtocolOptions:
      '@type': type.googleapis.com/envoy.extensions.upstreams.http.v3.HttpProtocolOptions
      commonHttpProtocolOptions:
        idleTimeout: 60s
      explicitHttpConfig:
        httpProtocolOptions: {}
  upstreamConnectionOptions:
    tcpKeepalive:
      keepaliveInterval: 10
      keepaliveProbes: 10
      keepaliveTime: 700
	- altStatName: httpbin-dev.httpbin-dev.svc.130.xx.io.port.8000.app_inst.httpbin-dev.app_svc.unknown
	circuitBreakers:
	thresholds:
	- maxConnections: 20000
	maxPendingRequests: 20000
	maxRequests: 20000
	maxRetries: 20000
	trackRemaining: true
	connectTimeout: 1s
	edsClusterConfig:
	edsConfig:
	ads: {}
	initialFetchTimeout: 0s
	resourceApiVersion: V3
	serviceName: outbound\|8000\|\|httpbin-dev.httpbin-dev.svc.130.xx.io
	filters:
	- name: istio.metadata_exchange
	typedConfig:
	'@type': type.googleapis.com/udpa.type.v1.TypedStruct
	typeUrl: type.googleapis.com/envoy.tcp.metadataexchange.config.MetadataExchange
	value:
	protocol: istio-peer-exchange
	lbSubsetConfig:
	fallbackPolicy: ANY_ENDPOINT
	subsetSelectors:
	- fallbackPolicy: NO_FALLBACK
	keys:
	- endpoint-ip
	metadata:
	filterMetadata:
	istio:
	config: /apis/networking.istio.io/v1alpha3/namespaces/istio-dev/destination-rule/default-traffic-policy
	default_original_port: 8000
	services:
	- host: httpbin-dev.httpbin-dev.svc.130.xx.io
	name: httpbin-dev
	namespace: httpbin-dev
	name: outbound\|8000\|\|httpbin-dev.httpbin-dev.svc.130.xx.io
	transportSocketMatches:
	- match:
	tlsMode: istio
	name: tlsMode-istio
	transportSocket:
	name: envoy.transport_sockets.tls
	typedConfig:
	'@type': type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.UpstreamTlsContext
	commonTlsContext:
	alpnProtocols:
	- istio-peer-exchange
	- istio
	combinedValidationContext:
	defaultValidationContext:
	matchSubjectAltNames:
	- exact: spiffe://dev.xx.io/ns/httpbin-dev/sa/default
	validationContextSdsSecretConfig:
	name: ROOTCA
	sdsConfig:
	apiConfigSource:
	apiType: GRPC
	grpcServices:
	- envoyGrpc:
	clusterName: sds-grpc
	setNodeOnFirstMessageOnly: true
	transportApiVersion: V3
	initialFetchTimeout: 0s
	resourceApiVersion: V3
	tlsCertificateSdsSecretConfigs:
	- name: default
	sdsConfig:
	apiConfigSource:
	apiType: GRPC
	grpcServices:
	- envoyGrpc:
	clusterName: sds-grpc
	setNodeOnFirstMessageOnly: true
	transportApiVersion: V3
	initialFetchTimeout: 0s
	resourceApiVersion: V3
	sni: outbound_.8000_._.httpbin-dev.httpbin-dev.svc.130.xx.io
	- match: {}
	name: tlsMode-disabled
	transportSocket:
	name: envoy.transport_sockets.raw_buffer
	type: EDS
	typedExtensionProtocolOptions:
	envoy.extensions.upstreams.http.v3.HttpProtocolOptions:
	'@type': type.googleapis.com/envoy.extensions.upstreams.http.v3.HttpProtocolOptions
	commonHttpProtocolOptions:
	idleTimeout: 60s
	explicitHttpConfig:
	httpProtocolOptions: {}
	upstreamConnectionOptions:
	tcpKeepalive:
	keepaliveInterval: 10
	keepaliveProbes: 10
	keepaliveTime: 700
	- altStatName: httpbin-dev.httpbin-dev.svc.130.xx.io.port.8001.app_inst.httpbin-dev.app_svc.unknown
	circuitBreakers:
	thresholds:
	- maxConnections: 20000
	maxPendingRequests: 20000
	maxRequests: 20000
	maxRetries: 20000
	trackRemaining: true
	connectTimeout: 1s
	edsClusterConfig:
	edsConfig:
	ads: {}
	initialFetchTimeout: 0s
	resourceApiVersion: V3
	serviceName: outbound\|8001\|\|httpbin-dev.httpbin-dev.svc.130.xx.io
	filters:
	- name: istio.metadata_exchange
	typedConfig:
	'@type': type.googleapis.com/udpa.type.v1.TypedStruct
	typeUrl: type.googleapis.com/envoy.tcp.metadataexchange.config.MetadataExchange
	value:
	protocol: istio-peer-exchange
	lbSubsetConfig:
	fallbackPolicy: ANY_ENDPOINT
	subsetSelectors:
	- fallbackPolicy: NO_FALLBACK
	keys:
	- endpoint-ip
	metadata:
	filterMetadata:
	istio:
	config: /apis/networking.istio.io/v1alpha3/namespaces/istio-dev/destination-rule/default-traffic-policy
	default_original_port: 8001
	services:
	- host: httpbin-dev.httpbin-dev.svc.130.xx.io
	name: httpbin-dev
	namespace: httpbin-dev
	name: outbound\|8001\|\|httpbin-dev.httpbin-dev.svc.130.xx.io
	transportSocketMatches:
	- match:
	tlsMode: istio
	name: tlsMode-istio
	transportSocket:
	name: envoy.transport_sockets.tls
	typedConfig:
	'@type': type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.UpstreamTlsContext
	commonTlsContext:
	alpnProtocols:
	- istio-peer-exchange
	- istio
	combinedValidationContext:
	defaultValidationContext:
	matchSubjectAltNames:
	- exact: spiffe://dev.xx.io/ns/httpbin-dev/sa/default
	validationContextSdsSecretConfig:
	name: ROOTCA
	sdsConfig:
	apiConfigSource:
	apiType: GRPC
	grpcServices:
	- envoyGrpc:
	clusterName: sds-grpc
	setNodeOnFirstMessageOnly: true
	transportApiVersion: V3
	initialFetchTimeout: 0s
	resourceApiVersion: V3
	tlsCertificateSdsSecretConfigs:
	- name: default
	sdsConfig:
	apiConfigSource:
	apiType: GRPC
	grpcServices:
	- envoyGrpc:
	clusterName: sds-grpc
	setNodeOnFirstMessageOnly: true
	transportApiVersion: V3
	initialFetchTimeout: 0s
	resourceApiVersion: V3
	sni: outbound_.8001_._.httpbin-dev.httpbin-dev.svc.130.xx.io
	- match: {}
	name: tlsMode-disabled
	transportSocket:
	name: envoy.transport_sockets.raw_buffer
	type: EDS
	typedExtensionProtocolOptions:
	envoy.extensions.upstreams.http.v3.HttpProtocolOptions:
	'@type': type.googleapis.com/envoy.extensions.upstreams.http.v3.HttpProtocolOptions
	commonHttpProtocolOptions:
	idleTimeout: 60s
	explicitHttpConfig:
	httpProtocolOptions: {}
	upstreamConnectionOptions:
	tcpKeepalive:
	keepaliveInterval: 10
	keepaliveProbes: 10
	keepaliveTime: 700