I am wondering: When you enable “verify_incoming” and “verify_outgoing”, you just can’t reach the Consul UI anymore, as the Consul servers expect a TLS cert to be sent along with the client request.
I’m curious how ppl have solved this. Do you run a local agent with it’s own TLS keypair and exposes the UI, and connect your browser to the local agent? Do you put a reverse proxy in front it which uses a TLS keypair to connect to the backend servers? Or another solution?