Using Envoy as an Egress Proxy for TLS Enabled Traffic
CNCF [Cloud Native Computing Foundation] via YouTube
Overview
Syllabus
Intro
Cloud-Native Applications Bring New Security Challenges
Egress Connectivity is Must to Have for Modern Microservice Applications rely on external services for critical part of their functionality
Envoy's Limitations For Egress Security and Proposed Solut
SSL Proxy for Deep SSL Inspection
Using SSL Proxy for Egress TLS Interception
Enabling Envoy to Intercept Egress TLS with SSL Proxy SSL Proxy provides MITM and Enables Envoy Traffic Management & Security for TLS
Envoy Extension - SSL Proxy Listener Filter SSL Proxy Listener Fiter Provides Interface to SSL Prowy
ISTIO Control Plane Integration Using EnvoyFilter CRD Configures Envoy as transparent proxy for Observability Mode Only
Open Items & Next Steps
Taught by
CNCF [Cloud Native Computing Foundation]