Hi, I have deployed Consul Ingress Gateway on a K8 cluster, the cluster has a info service.
It is configured in the following way:
apiVersion: consul.hashicorp.com/v1alpha1
kind: IngressGateway
metadata:
name: ingress-gateway
spec:
tls:
enabled: true
listeners:
- port: 443
protocol: http
services:
- name: info
hosts: ['info']
I have the following entries in the helm-consul-values.yaml file:
ingressGateways:
enabled: true
gateways:
- name: ingress-gateway
service:
type: LoadBalancer
ports:
- port: 80
- port: 443
- port: 8080
I copied the root certificate of consul and when I curl the info service
curl -v --cacert root.cert https://aws-elb-external-ip
I get the following error:
* Trying 3.65.163.137:443...
* TCP_NODELAY set
* Connected to 17386.eu-central-1.elb.amazonaws.com (X.XX.XXX.XXX) port 443 (#0)
* ALPN, offering h2
* ALPN, offering http/1.1
* successfully set certificate verify locations:
* CAfile: root.cert
CApath: /etc/ssl/certs
* TLSv1.3 (OUT), TLS handshake, Client hello (1):
* OpenSSL SSL_connect: SSL_ERROR_SYSCALL in connection to a89-1171917386.eu-central-1.elb.amazonaws.com:443
* Closing connection 0
curl: (35) OpenSSL SSL_connect: SSL_ERROR_SYSCALL in connection to a8347-1171917386.eu-central-1.elb.amazonaws.com:443
@blake @lkysow Can you please provide me with some information related to this problem.