Service Mesh routing is completely broken in clusterwide mode and ingress or egress traffic no longer works

Solution Verified - Updated -

Issue

  • After migrating or installing ServiceMeshControlPlane in ClusterWide mode all ingress or egress traffic stopped working.
    Routes and listeners disappeared from the ingress and egress gateways and Istiod show many warning messages like:
2024-04-26T11:23:44.292022Z warn    buildGatewayListeners: skipping privileged gateway port 80 for node istio-ingressgateway-85fb76954d-mwprf.istio-system as it is an unprivileged pod
2024-04-26T11:23:44.292027Z warn    buildGatewayListeners: skipping privileged gateway port 443 for node istio-ingressgateway-85fb76954d-mwprf.istio-system as it is an unprivileged pod
2024-04-26T11:23:44.292030Z warn    gateway has zero listeners for node istio-ingressgateway-85fb76954d-mwprf.istio-system

Environment

Red Hat OpenShift Container Platform 4.12+
Red Hat OpenShift Service Mesh v2.4+

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content