Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

help request: Stream Proxy with TLS #11736

Closed
JorgeAraujo123 opened this issue Nov 11, 2024 · 1 comment
Closed

help request: Stream Proxy with TLS #11736

JorgeAraujo123 opened this issue Nov 11, 2024 · 1 comment
Labels
question label for questions asked by users

Comments

@JorgeAraujo123
Copy link

JorgeAraujo123 commented Nov 11, 2024
edited
Loading

Description

I'm using apisix on K8S and i'm trying to do stream proxy via TCP with TLS
I've done the following (via helm):

proxy_mode: http&stream
stream_proxy:
  tcp: 
    - addr: 636
      tls: true
service:
  stream:
    enabled: true
    tcp:
      - addr: 636
        tls: true

And create the tls and the route:

---
apiVersion: apisix.apache.org/v2
kind: ApisixTls
metadata:
  name: vldap-tls
spec:
  hosts:
    - vldap.test.com
  secret:
    name: secret
    namespace: apisix
---
apiVersion: apisix.apache.org/v2
kind: ApisixRoute
metadata:
  name: vldap
spec:
  stream:
  - name: vldap
    protocol: TCP
    match:
      ingressPort: 636
      host: vldap.test.com
    backend:
      serviceName: vldap
      servicePort: 636

If i do the request direct to the service i get the response, but via apisix i don't:

ldap_err2string
ldap_result: Can't contact LDAP server (-1)
ldap_do_free_request: asked to free lr 0x55f921e8f3e0 msgid 1 refcnt 0
ldap_free_connection 1 1
ldap_free_connection: actually freed

Am i missing something?

Environment

  • APISIX version (run apisix version): 3.9.0
  • APISIX Ingress Controller version 1.8.2
  • Operating system (run uname -a): EKS kubernetes amazon linux
  • Load balancer: AWS NLB with proxy protocol
@dosubot dosubot bot added the question label for questions asked by users label Nov 11, 2024
@JorgeAraujo123
Copy link
Author

Problem solved
It was the
enable_tcp_pp_to_upstream, i needed to set it to false

@github-project-automation github-project-automation bot moved this from 📋 Backlog to ✅ Done in Apache APISIX backlog Nov 14, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
question label for questions asked by users
Projects
Apache APISIX backlog
Status: Done
Milestone
No milestone
Development

No branches or pull requests
1 participant
@JorgeAraujo123