You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
$ /tmp/grpcurl -cacert=/var/run/secrets/kubernetes.io/serviceaccount/service-ca.crt dns:///simplest-collector-headless.bookinfo.svc:14250 listFailed to dial target host "dns:///simplest-collector-headless.bookinfo.svc:14250": tls: first record does not look like a TLS handshake
With the prefix, the connection can be established (the message about the reflection API not being support is indicative that the server was queried and that TLS was established):
$ /tmp/grpcurl -cacert=/var/run/secrets/kubernetes.io/serviceaccount/service-ca.crt dns:///simplest-collector-headless.bookinfo.svc:14250 listFailed to list services: server does not support the reflection API
The text was updated successfully, but these errors were encountered:
When debugging a problem related to TLS and Istio, I found that:
grpc
port should be prefixed withhttp
in the default casehttp
prefix should instead behttps
when TLS is enabledjaeger-operator/pkg/service/collector.go
Line 66 in 9cde42a
Without this prefix, this is seen in the logs:
With the prefix, the connection can be established (the message about the reflection API not being support is indicative that the server was queried and that TLS was established):
The text was updated successfully, but these errors were encountered: