Reputation: 5611
istioctl deploying to EKS -- how to NOT create an external load balancer?
I am using istioctl to install istio in an EKS cluster. However, for the moment I will be using an nginx ingress for externally facing services. How can I just deploy the istio service internally, or at least avoid the automatically created ELB?
Upvotes: 1
Views: 442
Answers (1)
Reputation: 8840
You can do it by editing istio-ingressgateway.
Change service type from
LoadBalancer -> Exposes the Service externally using a cloud provider’s load balancer
to
ClusterIP -> Exposes the Service on a cluster-internal IP. Choosing this value makes the Service only reachable from within the cluster.
Let's edit ingressgateway
kubectl edit svc istio-ingressgateway -n istio-system
Then please change the type from LoadBalancer to ClusterIP and # or delete every nodePort since You won't use them anymore and it have to be # or deleted so You could actually edit the file, without it, it fails to edit and nothing is happening.
EDIT
I can do this at install with istioctl using a values.yaml file?
Yes, it's possible.
This is a value You need to change:
values.gateways.istio-ingressgateway.type
example
Creating manifest to apply istio demo profile with ClusterIP
istioctl manifest generate --set profile=demo --set values.gateways.istio-ingressgateway.type="ClusterIP" > $HOME/generated-manifest.yaml
Upvotes: 2
Related Questions
- Setting up on ISTIO on EKS cluster using Terraform or Helm
- Azure kubernetes - Istio controller with Internal load balancer
- eks with istio ALB not being created
- How to set AWS ALB instead of ELB in Istio?
- Istio-Gateway does not obtain an external IP with EKS v2
- Install Istio on EKS cluster using Terraform and Helm
- Integrating Istio with AWS IAM
- Azure Kubernetes - Setup Istio with both Ingress & Egress Gateway?
- How to deploy a second Load Balancer for istio 1.5.1 on Azure