0

I have a pod that NEEDS to keep the client cert in tact and terminate TLS at the pod level. For that reason, I’ve got to use TLS passthrough mode.

However, I also need the source IP of the original packet origin. I can’t seem to get TPROXY working on the system due to unknown system requirements

TPROXY mode broken on 1.13.1 · Issue #37701 · istio/istio (github.com)

How can I preserve the source IP header in the packet? Do I need proxy protocol?

0 Answers0