curl -L https://istio.io/downloadIstio | ISTIO_VERSION=1.11.5 sh -
cd ~/istio-1.11.5/bin
Ram Vennam rvennam
rvennam
/ Istio-Solo-FIPS.md
Created
February 3, 2022 19:57
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| kubectl config use-context $CLUSTER1 | |
| kubectl create ns gloo-mesh-test | |
| kubectl label ns gloo-mesh-test istio-injection=enabled | |
| cat <<EOF | oc -n gloo-mesh-test create -f - | |
| apiVersion: "k8s.cni.cncf.io/v1" | |
| kind: NetworkAttachmentDefinition | |
| metadata: | |
| name: istio-cni | |
| EOF |
rvennam
/ snapshots.sh
Last active
August 25, 2022 13:11
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/sh | |
| kubectl logs deployment/gloo-mesh-mgmt-server -n gloo-mesh > mgmt-server.log | |
| kubectl port-forward deployment/gloo-mesh-mgmt-server -n gloo-mesh 9091 >/dev/null 2>&1 & | |
| pid=$! | |
| sleep 3 | |
| curl -s localhost:9091/snapshots/input > input.json | |
| curl -s localhost:9091/snapshots/output > output.json |
rvennam
/ currency-api-spec-3-1-0.yaml
Last active
April 18, 2023 17:10
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| openapi: '3.1.0' | |
| info: | |
| version: '1.0.0' | |
| title: 'Currencies API' | |
| description: International currency support | |
| servers: | |
| - url: https://currency.solo.io:443/ | |
| description: Solo.io Currency server API | |
| - url: http://localhost:8080/ | |
| description: Local development |
rvennam
/ currency-api-spec.json
Last active
April 18, 2023 16:47
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "openapi": "3.0.0", | |
| "info": { | |
| "version": "1.0.0", | |
| "title": "Currencies API", | |
| "description": "International currency support" | |
| }, | |
| "servers": [ | |
| { | |
| "url": "https://currency.solo.io:443/", |
rvennam
/ currency-api-spec.yaml
Last active
April 18, 2023 17:29
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| openapi: '3.0.0' | |
| info: | |
| version: '1.0.0' | |
| title: 'Currencies API' | |
| description: International currency support | |
| servers: | |
| - url: https://currency.solo.io:443/ | |
| description: Solo.io Currency server API | |
| - url: http://localhost:8080/ | |
| description: Local development |
rvennam
/ gloo-mesh-external-service-failover.yaml
Last active
August 31, 2023 18:56
Gloo Mesh External Service Failover
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| apiVersion: networking.gloo.solo.io/v2 | |
| kind: ExternalService | |
| metadata: | |
| name: mydb | |
| namespace: default | |
| labels: | |
| external-service: mydb | |
| spec: | |
| hosts: | |
| - mydb.com |
rvennam
/ delegated-route-table-jwt-policy.yaml
Created
September 11, 2023 15:35
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| apiVersion: networking.gloo.solo.io/v2 | |
| kind: RouteTable | |
| metadata: | |
| name: ingress | |
| namespace: ops-team | |
| spec: | |
| hosts: | |
| - '*' | |
| virtualGateways: | |
| - name: north-south-gw |
rvennam
/ Istio Self Signed Root Intermediate Certificate
Created
April 18, 2024 19:45
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| $ make SHELL='sh -x' -f Makefile.selfsigned.mk intermediate-certs VERBOSE=1 | |
| + echo 'generating root-key.pem' | |
| generating root-key.pem | |
| + openssl genrsa -out root-key.pem 4096 | |
| + echo '[ req ]' | |
| + echo 'encrypt_key = no' | |
| + echo 'prompt = no' | |
| + echo 'utf8 = yes' | |
| + echo 'default_md = sha256' | |
| + echo 'default_bits = 4096' |
rvennam
/ 9080-listener.yaml
Created
April 22, 2024 15:20
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| - accessLog: | |
| - filter: | |
| responseFlagFilter: | |
| flags: | |
| - NR | |
| name: envoy.access_loggers.file | |
| typedConfig: | |
| '@type': type.googleapis.com/envoy.extensions.access_loggers.file.v3.FileAccessLog | |
| logFormat: | |
| textFormatSource: |