envoyproxy/envoy

Downstream TLS at listener level

Open

#25.787 aperta il 26 feb 2023

Vedi su GitHub
 (1 commento) (0 reazioni) (0 assegnatari)C++ (5373 fork)batch import
area/listenerhelp wantedquestion

Metriche repository

Star
 (27.997 star)
Metriche merge PR
 (Merge medio 8g) (378 PR mergiate in 30 g)

Descrizione

Is it currently possible to apply DownstreamTLS context for any new connection opened on a specific TCP listener, instead of a filter chain? My motivation for this is so I could match a filter chain by L7 information, rather than only relying on information that is available before TLS handshake is made. Http inspector for example can only help matching a filter chain if there's no TLS in the context. Thanks

Guida contributor