Extend support of IstioServiceEntry fields
shireenf-ibm opened this issue · 1 comments
-
We already have an initial support of
Istio ServiceEntryobject (supporting itshostsfield), which produces theDNSEntrypeers type.
The new peer type is used byIstio Sidecarpolicies to fulfill the rules and connections between external hosts(DNSEntry)and an internal peers. merged here - 1st PR -
The basic support of
ServiceEntryobjects, is working with all queries and there are tests examples. 2nd PR
so far, DNS entries are exported to all namespaces and the TCP connection type to these hosts is All connections.
In this issue we want to expand the support of ServiceEntry as following:
-
add support of
exportTofiled - (3rd PR)
the idea is creating policy elements from the "exported" namespaces to theDNSEntrypeers
and adding relevant tests -
add support of
portsfiled - ( 4th PR)
update the policy elements with theServiceEntry's portsand add relevant tests (plus updating theTCPtype conns which is All Connections in first PRs to the actual ports ) -
add "complicated" tests , with multiple service-entries which has common hosts but different exportTo/ ports (- 5th PR)