istio-demo | repository contains scripts/manifests for an Istio service | Service Mesh library

I am trying to install Istio on a Kubernetes cluster. I created a three node cluster and installed istioctl 1.1.0 version. The istio installation comes with a istio-demo.yaml file located inside install/kubernetes/istio-demo.yaml directory. When I ran the kubectl apply -f install/kubernetes/istio-demo.yaml command, I got the below output.

Then I listed the services using kubectl get svc -n istio-system I am seeing the services

Then when I list the pods using kubectl get pod -n istio-system I cannot see the pods. Where am I going wrong?

I am trying to setup the OPA adapter in Istio with the simplest rule to deny everything by default:

I have an existing GKE cluster with the Istio addon installed, e.g.:

I was playing around in minikube and installed the wrong version of istio. I ran:

I followed Istio's official documentation to setup Istio for sample bookinfo app with minikube. but I'm getting Unable to connect to the server: net/http: TLS handshake timeout error. these are the steps that I have followed(I have kubectl & minikube installed).

I'm trying to install Istio 1.13.1 on Kubernetes 1.13.5 deployed on minikube 1.0.0 but I get some errors in the end. Here is log of the installation:

I have implemented an istio policy so that users will need a JWT token to access my backend, and admin-backend services. However, it is not letting me through with a valid token. I am running istio-demo on minikube and have done nothing with my deployment but configure an egress for auth0. Then when I go to apply my policy, I can no longer access these services with my requests.

rbac-policy.yaml

I previously had a bunch of microservices running fine without mtls enabled, that I could access via my frontend http://192.168.99.100:31001/, backend(s), and db running on various other NodePort's.

For the next stage of my project I need to enable mtls to accomplish securing my services via a JWT token controlled by istio. But, when I use istio-auth-demo instead of istio-demo I cannot access my services via their endpoint. What do I need to do to fix this? I have wrote a gateway, virtualservice, and destinationrules that I thought might clear up the issue.

Just looking for someone to point me in the right direction.

I am using istio 1.0.2 version with istio-demo-auth.yaml, I have a mssql db outside the k8s cluster, I want to connect it form the istio injected services. I try with this Consuming External TCP Services blogs, but the services cannot connect to the outside mssql instance. The service entry as below: