|
|
|
|
|
|
by kodama-lens
175 days ago
|
|
|
Thanks for the write up. It is indeed a simple and good solution for smaller workloads and as already pointed out it has some limitations.
For devs the explicit configuration of that HTTP_PROXY is annoying, so the last time I did an egress proxy on OpenShift I wrote a small mutating webhook that injects that envs automatically in all pods. OpenShift does this already automatically but only for some system pods.
Right now I explore Cilium's Egress-Gateway since this also handles none HTTP connections and is directly within the routing layer, but it has a learning curve |
|
|