Hi, I have deployed Consul with Connect enabled in my EKS 1.18 cluster.
I am trying to achieve a few things related to routing that I am not sure how to:
- How can I specify per pod that i cannot access certain CIDR’s? for example disallow out traffic to 10.0.0.0/8
- How can I force a pod to speak only with connect? and drop all other traffic requests
- How can I define a service using connect that it should only accept other services (down streams) via connect.
- How can I pass dynamic configuration per pod to the sidecar proxy Envoy? I only found the protocol annotation.
I am assuming most of what I need can be configured there but I can’t understand how I can pass dynamic (not bootstrap) configuration per deployment.
i.e the service “my-nginx” should be configured so and so.
Would love a reference on those topics on how to do it, I did found several places in the docs mentioning those features but couldn’t find how to do it.
Would appreciate any help