Egress Gateway: Control Your Mesh's Outbound Traffic
An Egress Gateway is a monitored exit door for all outbound traffic from your service mesh. Use it to enforce security on external calls, like restricting domains or originating mTLS.
An Egress Gateway acts as a single, controlled exit point for all outbound traffic from your service mesh, like a factory's secured loading dock. It's used to enforce consistent security policies on external traffic, such as restricting calls to specific domains or originating mTLS for services that can't. A common footgun is assuming it secures all egress by default; you must explicitly configure `ServiceEntry` and `VirtualService` resources to route traffic through the gateway, otherwise services can still bypass it.
Read the original → istio.io
- #istio
- #service mesh
- #kubernetes
- #networking
Get five bites like this every day.
Tezvyn delivers a daily feed of 60-second tech bites with quizzes to lock in what you learn.