A ASM Configuration
In the current release 24.3.0, the "cluster.service" and "type" fields are added as a part of ASM Envoy Filter configuration enhancements.
The following table includes a detailed list of the Custom Resource
Definitions (CRDs) with supported fields:
Table A-1 Supported CRDs list with fields
| CRD | Supported Fields |
|---|---|
| Service Entry | hosts |
| exportTo | |
| addresses | |
| ports.name | |
| ports.number | |
| ports.protocol | |
| resolution | |
| Destination Rule | host |
| mode | |
| sbitimers | |
| tcpConnectTimeout | |
| tcpKeepAliveProbes | |
| tcpKeepAliveTime | |
| tcpKeepAliveInterval | |
| Envoy Filter | labelselector |
| applyTo | |
| filtername | |
| operation | |
| typeconfig | |
| configkey | |
| configvalue | |
| stream_idle_timeout | |
| max_stream_duration | |
| patchContext | |
| networkFilter_listener_port | |
| transport_socket_connect_timeout | |
| filterChain_listener_port | |
| route_idle_timeout | |
| route_max_stream_duration | |
| httpRoute_routeConfiguration_port | |
| vhostname | |
| cluster.service | |
| type | |
| Peer Authentication | labelselector |
| tlsmode | |
| Virtual Service | host |
| destinationhost | |
| port | |
| exportTo | |
| retryon | |
| timeout | |
| Request Authentication | labelselector |
| issuer | |
| jwks/jwksUri | |
| Policy Authorization | labelselector |
| action | |
| hosts | |
| paths | |
| xfccvalues |
Note:
-
For virtual service CRD, when the destinationhost is any SCP microservice, do not configure the timeout value.
- For details of these CRDs and parameters, see the Configuring SCP to Support Aspen Service Mesh section.