首页
发现
标签
搜索
APP下载
注册
登录
首页
发现
榜单
标签
收录
APP下载
注册
登录
Istio 1.4 Document
文档评分:
89.1 (
0 个有效评分
)
文档语言:
中文
章节数量:
0
阅读人次:
31770
收藏数量:
0
整理分享:
管理员
阅读
收藏
下载
分享
阅读
收藏
下载
分享
文档标签
项目
久经考验
可视性
合规
整体性
路由
企业内部
文档概述
Istio 是一个由谷歌、IBM 与 Lyft 共同开发的开源项目,旨在提供一种统一化的微服务连接、安全保障、管理与监控方式。Istio 项目能够为微服务架构提供流量管理机制,同时亦为其它增值功能(包括安全性、监控、路由、连接管理与策略等)创造了基础。这款软件利用久经考验的 Lyft Envoy 代理进行构建,可在无需对应用程序代码作出任何发动的前提下实现可视性与控制能力。Istio 项目是一款强大的工具,可帮助 CTO/CIO 们立足企业内部实施整体性安全、政策与合规性要求。
文档
目录
文档
评论 (
0
)
What is Istio?
Concepts
Traffic Management
Security
Policies
Observability
Getting Started
Setup
Platform Setup
Alibaba Cloud
Azure
Docker Desktop
Google Kubernetes Engine
Kubernetes Gardener
IBM Cloud
MicroK8s
Minikube
OpenShift
Install
Oracle Cloud Infrastructure
Customizable Install with Helm
Customizable Install with Istioctl
Standalone Operator Install [Experimental]
Simplified Multicluster Install [Experimental]
Multicluster Installation
Replicated control planes
Shared control plane (single-network)
Shared control plane (multi-network)
Upgrade
Upgrade using Helm
Upgrade Istio using istioctl [Experimental]
More Guides
Install Istio with the Istio CNI plugin
Installing the Sidecar
Installation Configuration Profiles
Tasks
Traffic Shifting
Fault Injection
Request Routing
Request Timeouts
TCP Traffic Shifting
Circuit Breaking
Ingress
Mirroring
Secure Gateways (File Mount)
Ingress Gateways
Secure Gateways (SDS)
Egress
Kubernetes Ingress with Cert-Manager
Ingress Gateway without TLS Termination
Accessing External Services
Egress Gateways
Egress TLS Origination
Egress using Wildcard Hosts
Egress Gateways with TLS Origination
Monitoring and Policies for TLS Egress
Kubernetes Services for Egress Traffic
Using an External HTTPS Proxy
Automatic mutual TLS
Authentication
Authentication Policy
Mutual TLS Deep-Dive
Mutual TLS over HTTPS
Citadel Configuration
Mutual TLS Migration
Citadel Health Checking
Plugging in External CA Key and Certificate
Configure Citadel Service Account Secret Generation
Provisioning Identity through SDS
Authorization for HTTP traffic
Authorization
Authorization for TCP traffic
Authorization for groups and list claims
Istio DNS Certificate Management
Authorization Policy Trust Domain Migration
Istio Webhook Management [Experimental]
Enabling Rate Limits
Enabling Policy Enforcement
Denials and White/Black Listing
Control Headers and Routing
Metrics
Collecting Metrics
Collecting Metrics for TCP services
Querying Metrics from Prometheus
Visualizing Metrics with Grafana
Logs
Logging with Fluentd
Getting Envoy's Access Logs
Collecting Logs
Distributed Tracing
Overview
Jaeger
Zipkin
LightStep
Visualizing Your Mesh
Examples
Remotely Accessing Telemetry Addons
Bookinfo Application
Bookinfo Application - Multicluster
Virtual Machines in Multi-Network Meshes
Virtual Machines in Single-Network Meshes
Virtual Machines
Bookinfo with a Virtual Machine
Learn Microservices using Kubernetes and Istio
Prerequisites
Setup a Local Computer
Setup a Kubernetes Cluster
Platform-specific Examples (Deprecated)
Run a Microservice Locally
Install Istio for Google Cloud Endpoints Services
Deployment
Operations
IBM Cloud Private
Architecture
Deployment Models
Performance and Scalability
Configuration
Pods and Services
Mesh Configuration
Automatic Sidecar Injection
Dynamic Admission Webhooks Overview
Configuration Validation Webhook
Service Account Secret Creation
Health Checking of Istio Services
Protocol Selection
Locality Load Balancing
Harden Docker Container Images
Extending Self-Signed Certificate Lifetime
Envoy Statistics
Generate Istio Metrics Without Mixer [Alpha]
Best Practices
Deployment Best Practices
Traffic Management Best Practices
Security Best Practices
Common Problems
Traffic Management Problems
Observability Problems
Security Problems
Sidecar Injection Problems
Diagnostic Tools
Galley Configuration Problems
Using the Istioctl Command-line Tool
Debugging Envoy and Pilot
Understand your Mesh with Istioctl Describe
Diagnose your Configuration with Istioctl Analyze
Component Introspection
Component Logging
Reference
Installation Options (istioctl)
Installation Options (Helm)
Global Mesh Options
Resource Annotations
Destination Rule
Envoy Filter
Virtual Service
Gateway
Sidecar
Service Entry
Authorization Policy
Authorization Policy Conditions
RBAC (deprecated)
RBAC Constraints and Properties (deprecated)
Mixer Client
Policies and Telemetry
Mixer Configuration Model
Rules
Attribute Vocabulary
Expression Language
Apache SkyWalking
Prometheus
Adapters
Apigee
App Identity and Access
CloudMonitor
Circonus
Datadog
CloudWatch
Denier
Fluentd
Kubernetes Env
Memory quota
List
New Relic
Wavefront by VMware
Stdio
StatsD
Stackdriver
OPA
SolarWinds
Redis Quota
Templates
API Key
Check Nothing
Edge
List Entry
Kubernetes
Log Entry
Metric
Report Nothing
Trace Span
Analytics
Quota
Default Metrics
Analyzer Message Format
Configuration Analysis Messages
ConflictingSidecarWorkloadSelectors
ConflictingMeshGatewayVirtualServiceHosts
Deprecated
InternalError
GatewayPortNotOnWorkload
MisplacedAnnotation
IstioProxyVersionMismatch
NamespaceNotInjected
MultipleSidecarsWithoutWorkloadSelectors
PodMissingProxy
VirtualServiceDestinationPortSelectorRequired
SchemaValidationError
UnknownAnnotation
ReferencedResourceNotFound
Commands
istio_ca
galley
istioctl
node_agent
mixs
sidecar-injector
pilot-agent
operator
pilot-discovery
Glossary
相关书籍
Composer 中文文档
web框架lessgo用户手册
Flask Web 开发入门
GatewayWorker2.x 3.x 手册
PHP 开发者实践
laravel 源码详解
Spring Data 文档
Maven学习笔记
Django 官方教程翻译项目
Spring Boot 中文文档
Hutool 参考文档
The Rust Programming Language (1st edition)
×
分享,让知识传承更久远
×
文档下载
请下载您需要的格式的文档,随时随地,享受汲取知识的乐趣!
PDF
文档
EPUB
文档
MOBI
文档