Istio Details

4.2.2 Istio Details

If you are using an Istio service mesh, provide details about the Istio ingress gateway that you have set up in the values.yaml file.

Skip providing values for the properties mentioned in the following table if you aren't using an Istio service mesh.

Before you begin, ensure that you have set up and configured Istio. See Install the Required Software for Kubernetes. You must also set enableIstio to true.

Property	Description
`istioSystemNameSpace`	The namespace in which you have installed Istio. The default namespace is `istio-system`. If you have installed Istio in another namespace, run the following command to find all the namespaces in the cluster. `kubectl get ns`
`istioIngressGateway.name`	Enter the name of the Istio ingress gateway that you have created. For example, `ingressgateway`. To find the name of the Istio ingress gateway, run the following command and from the response note down the value for the `istio` label. `kubectl describe service/istio-ingressgateway -n istio-system`
`istioIngressGateway.tlsEnabled`	Set this to `true` to enable access to the service using the HTTPS protocol. When you set this to `true`, you must provide details of the Kubernetes secret that contains the SSL key and certificate to access Istio using HTTPS. Note: You must set this value to `true` in production environments.
`istioIngressGateway.credentialName`	You must specify a value for this property if `tlsEnabled` is set to `true`. Enter the name of the Kubernetes secret that you have created to enable access to Istio using the HTTPS protocol. See Create a Kubernetes Secret with SSL Details for Istio. For example, `tls-credential`.
`istioIngressGateway.hosts`	Enter the external IP Address of Istio ingress gateway or the name of the hosts. If you are using a load balancer or have multiple hosts, enter a comma-separated list of host names or IP addresses. See Find IP Address of Istio Ingress Gateway.
`istioIngressGateway.createOtmmGatewayAlias`	Set this to true to create a gateway named `otmm-gateway` for backward compatibility.
`istioIngressGateway.port`	Specify the istio ingress port number. To retrieve the istio ingress gateway port number, run the following command. `kubectl get svc -n istio-system` Ensure that the required networking rules are set up to ensure that traffic is permitted to and from this port to MicroTx.
`istioIngressGateway.protocol`	Specify the protocol you want to use to access Istio. Possible values are `http` and `https`, when `istioIngressGateway.tlsEnabled` is set to `true`. See https://istio.io/latest/docs/ops/configuration/traffic-management/protocol-selection/.

Sample Property Values for Istio

The following code snippet provides sample property values for Istio.

istioSystemNameSpace: istio-system
istioIngressGateway:
  name: ingressgateway
  tlsEnabled: "true"
  credentialName: tls-credential
  hosts: 192.0.2.1
  port: 443
  protocol: https

Parent topic: Configure the values.yaml File