External Consul Clients - Kubernetes Servers - TLS and ACL Enabled

Hi all! We are currently running a consul cluster (with servers) in a kubernetes cluster. The consul cluster has both ACL and TLS enabled.

We are trying to join some legacy EC2 systems to this service mesh, externally. We are having some issues getting the agents to successfully communicate with the Consul servers, and I believe it is due to the k8s auto-join using IP addresses to join, but the TLS certificates not being valid for that IP, only the generated domains.

Is there any documentation around joining external clients to a kubernetes Consul installation, with the various TLS / ACL / security settings enabled? TIA!

Hi, unfortunately we don’t have a doc detailing what you’re looking for. Can you post the errors and maybe we can help?