This scenario demonstrates how to secure HTTP traffic with Envoy Proxy. Securing HTTP traffic is critical to protecting users privacy and data.
In this scenario you will learn how to:
Apply SSL certificates for securing HTTP traffic.
Redirecting HTTP traffic to HTTPS.
At the end of the scenario, you will have an understanding of how to use TLS certificates to secure HTTP traffic with Envoy.
Securing traffic with HTTPS and SSL/TLS
Step 1 - SSL Certificates
For testing purposes the command below will generate a self-signed certificate for the domain example.com. This self-signed will cause warning messages about the certificate but is ideal for testing configuration locally. When deploying into production, you will need certificates generated for your site from a service such as Let’s Encrypt.
The command below creates a new certificate and key within a directory calls certs/. It sets the domain to example.com.
mkdir certs; cd certs; openssl req -nodes -new -x509 \ -keyout example-com.key -out example-com.crt \ -days 365 \ -subj '/CN=example.com/O=My Company Name LTD./C=US'; cd -
For more information about OpenSSL, visit this link.