istio.io/istio@v0.0.0-20240520182934-d79c90f27776/samples/external/github.yaml (about) 1 # This ServiceEntry exposes the hosts needed for github.com. 2 # After applying this file, Istio-enabled pods will be able to execute 3 # `git clone https://github.com/istio/api.git` and (with local identification 4 # config and certificate) `git clone git@github.com:istio/api.git` 5 6 # HTTP and TLS, the host must be specified 7 # See https://istio.io/docs/tasks/traffic-management/egress/ 8 apiVersion: networking.istio.io/v1alpha3 9 kind: ServiceEntry 10 metadata: 11 name: github-https 12 spec: 13 hosts: 14 - github.com 15 ports: 16 - number: 443 17 name: https 18 protocol: HTTPS 19 --- 20 # For TCP services the IP ranges SHOULD be specified to avoid problems 21 # if multiple SEs use the same port number. 22 # See https://istio.io/blog/2018/egress-tcp/#mesh-external-service-entry-for-an-external-mysql-instance 23 apiVersion: networking.istio.io/v1alpha3 24 kind: ServiceEntry 25 metadata: 26 name: github-tcp 27 spec: 28 hosts: 29 - dummy.github.com # not used 30 addresses: # from https://help.github.com/articles/about-github-s-ip-addresses/ 31 - "13.229.188.59/32" 32 - "13.250.177.223/32" 33 - "140.82.112.0/20" 34 - "18.194.104.89/32" 35 - "18.195.85.27/32" 36 - "185.199.108.0/22" 37 - "185.199.108.153/32" 38 - "185.199.109.153/32" 39 - "185.199.110.153/32" 40 - "185.199.111.153/32" 41 - "192.30.252.0/22" 42 - "192.30.252.153/32" 43 - "192.30.252.154/32" 44 - "23.20.92.3/32" 45 - "35.159.8.160/32" 46 - "52.74.223.119/32" 47 - "54.166.52.62/32" 48 - "54.87.5.173/32" 49 ports: 50 - name: tcp 51 number: 22 52 protocol: tcp 53 location: MESH_EXTERNAL