Advanced Sidecar Operations
TOC
Introduction
Advanced Sidecar Operations provide granular control over Istio proxy behavior within service meshes. This functionality:
- Optimizes network performance through targeted traffic handling
- Enables non-disruptive debugging and troubleshooting
- Offers emergency bypass capabilities
- Maintains operational flexibility in complex environments
Core value: Enhanced observability and control over service mesh components
Features
- Traffic passthrough configuration
- Pod-level bypass mode
- Dynamic log level adjustment
- Full Sidecar removal
Traffic Passthrough Configuration
Configuration Parameters
Implementation Steps
- Navigate: Service List > Target Service
- Select Details > Sidecar Configuration
- Configure passthrough rules:
- Add outbound ports/IP ranges
- Specify inbound container ports
- Confirm Deployment restart
Note: Triggers full Deployment restart - plan maintenance window
Bypass Mode Management
Operational Workflow
Execution Steps
- Locate target Pod: Pods tab
- Activate bypass:
> Bypass Mode - Toggle switch ➔ OK
- Restart Istiod component (admin required)
Requirements:
- Kubernetes ≥v1.23
- Pod in Running state
- No pending Sidecar updates
Sidecar Log Control
Log Levels
Update Process
- Access service details
- Click
- Select level and mode:
- Confirm update
Cluster Sync: Automatically propagates to multi-cluster deployments
Sidecar Removal
Impact Analysis
Removal Procedure
- Verify no active canary releases
- Execute Actions > Remove Sidecar
- Confirm operation:
Recovery: Requires re-injection through service mesh configuration