Replies: 3 comments 1 reply
-
It appears as though the certificates are invalid. This could be for a variety of reasons, including (but not limited to):
When you said I would recommend verifying that outside of Kong the certificate is working properly with another client. If that all appears to be working, consider using something like |
Beta Was this translation helpful? Give feedback.
-
By the way. Kong chart version was kong:2.7.0 I found a suspicious point. Here is my service yaml.
I patch annotation konghq.com/client-cert: mtls-grpc-client-cert When I check kong service by admin URL.
check kong-ingress-controller log
When I restart KIC, all Routes can't be found. Kong-proxy can't work well. I don't understand. It seems that |
Beta Was this translation helpful? Give feedback.
-
So after reviewing some of your other comments, it looks like you may have stumbled upon a bug in Kong Gateway. I've created Kong/kong#9270 to try and fix it and get feedback from the Gateway maintainers, I recommend subscribing to that PR for updates and then hopefully that can get this resolved for you. |
Beta Was this translation helpful? Give feedback.
-
I deploy mtls grpc server, and try to call sever by ingress. it stuck at some point.
Here is my idea. But I deploy it in Kubernetes. The same program in local env works well.
step1. create two certificates by cert-manager
then I got two certificates.
step2 deploy pod svc ingress
ingress
Result
local env(Forward pod port)
When I try call grpc server endpoint by ingress. My client logs
Check kong-proxy log.
Source Code: https://github.com/islishude/grpc-mtls-example
I have checked a lot of information, but I could not find any case of kong mtls grpc. The official doc configuration of tls can run Thanks in advance!
Beta Was this translation helpful? Give feedback.
All reactions