10 docs tagged with "istio"

Detects when the Istio CNI plugin fails to set up a pod's network sandbox

In Ambient mode, Istio applies a SNAT rule so that kubelet probe traffic

When Ambient mode is enabled, Ztunnel tunnels HTTP over HBONE

Detects when Istio Ambient\-mode HBONE (mTLS) traffic is blocked or dropped—

Detects when Ztunnel's DNS proxy or control\-plane component attempts to bind

Prometheus is failing to scrape and write Envoy metrics from Istio sidecars due to an unexpected EOF error. This occurs when trying to collect metrics from services that don't have proper protocol selection configured in their Kubernetes Service definition

Kiali is unable to fetch Istio traces due to a configuration error.

Connections routed through **ztunnel** stop after the default 10s deadline. Ztunnel logs show

The CNI plugin is not connected to Ztunnel. For pods in the mesh, Istio will run a CNI plugin during the pod 'sandbox' creation. This configures the networking rules. This may intermittently fail, in which case Kubernetes will automatically retry.

Envoy sidecars or Ambient **ztunnel** keep retrying the control\-plane