首页 文库资料 文章资讯  上传文档  发布文章  登录账户

分类

全部云计算&大数据(7)Istio(7)

语言

全部英语(3)中文(简体)(3)英语(1)

格式

全部PDF文档 PDF(6)PPT文档 PPT(1)
 
本次搜索耗时 0.023 秒,为您找到相关结果约 7 个.

  • ppt文档 Secure your microservices with istio step by step

    Auto-mTLS in Istio ● Decide what type of traffic the client sidecar to send automatically ○ If DestinationRule is configured, respect it ○ If server has a sidecar and allows mTLS, send mTLS – reviews-v1 in Istio - Destination rule http http http http mTLS mTLS #IstioCon mTLS in Istio - DestinationRule Defines what type of traffic the client sidecar will send ● DISABLE: send plain text, common if you want to TLS with service outside mesh apiVersion: networking.istio.io/v1alpha3 kind: DestinationRule metadata: name: reviews spec: host: reviews trafficPolicy: tls: mode: ISTIO_MUTUAL
    0 码力 | 34 页 | 67.93 MB | 1 年前
    3

  • pdf文档 Istio Security Assessment

    attacker that is able to intercept raw network connections between Envoy proxies and upstream DestinationRule targets can perform a man-in-the-middle attack against clients whose TLS-configured DestinationRules GitHub repository’s issue #25652,12 as part of its process to generate Envoy configurations from DestinationRule policies, Istio translates the Destina- tionRule trafficPolicy.tls (ClientTLSSettings) field Google Istio Security Assessment Google / NCC Group Confidential Recommendation Update the DestinationRule documentation16 to provide a clear warning early on that the lack of a configured caCertificates
    0 码力 | 51 页 | 849.66 KB | 1 年前
    3

  • pdf文档 Your laptop as part of the service mesh

    developers to consume this contract ● Prior knowledge of Istio ● Need to create VirtualService and DestinationRule before anything happens ● VirtualService evaluation order matters #IstioCon Checkpoint 1
    0 码力 | 30 页 | 555.24 KB | 1 年前
    3

  • pdf文档 Istio 在 Free Wheel 微服务中的实践

    Istio配置管理有局限性: • Endpoint的配置管理有防抖动处理,即使集群中的部署变化再快, 也不会阻塞Istio • Istio其他配置管理没有防抖动处理( VirtualService/DestinationRule等),如果用程序自动化注入这些 配置要注意在客户端实现限流 • Istio的配置管理缺少兼容性设计,CRD无法做到平滑升级 • Istio的架构和基本原理 • FreeWheel的Istio实践
    0 码力 | 31 页 | 4.21 MB | 1 年前
    3

  • pdf文档 Kubernetes容器应用基于Istio的灰度发布实践

    Deployment Deployment Label selector Istio Istio几种重要资源对象 • 入口资源对象 • VirtualService • DestinationRule • 重要属性 • HTTPRoute • HTTPMatchRequest • TCPRoute • DestinationWeight { "uri": { "prefix":
    0 码力 | 38 页 | 14.93 MB | 1 年前
    3

  • pdf文档 Kubernetes容器应用基于Istio的灰度发布实践

    Deployment Deployment Label selector Istio25 Istio几种重要资源对象 • 入口资源对象 – VirtualService – DestinationRule • 重要属性 • HTTPRoute • HTTPMatchRequest • TCPRoute • DestinationWeight26 { "uri": { "prefix":
    0 码力 | 34 页 | 2.64 MB | 6 月前
    3

  • pdf文档 Istio at Scale: How eBay is building a massive Multitenant Service Mesh using Istio

    ... destinationRules: - apiVersion: networking.istio.io/v1beta1 kind: DestinationRule spec: ... ... serviceEntries: - apiVersion: networking
    0 码力 | 22 页 | 505.96 KB | 1 年前
    3
共 7 条
  • 1
前往
相关搜索词
SecureyourmicroserviceswithistiostepbyIstioSecurityAssessmentYourlaptopaspartoftheservicemeshFreeWheel服务实践Kubernetes容器应用基于灰度发布g2sIstioAtScaleeBaySudhi