setting up istio ambient mode kubernetes cluster

To setup istio ambient mode on a local kubernetes cluster, you can to use kind + docker but must be on Linux. If you run it on a Windows, then you will run into cni networking issues when starting up your pods. 

Download istioctl and install it on your machine

Then apply the following crds

kubectl apply -f https://github.com/kubernetes-sigs/gateway-api/releases/download/v1.1.0/standard-install.yaml

Then run the following command to install it 

istioctl install --set profile=ambient --skip-confirmation

Next, install the ambient mode bookinfo sample application by following the instructions here.

https://istio.io/latest/docs/ambient/getting-started/deploy-sample-app/

Once you deploy the yaml and when you do a port forward you should see something like this.

Yay! that app is up and running.

If you look at the logs using the following command:

kubectl logs -l k8s-app=istio-cni-node -n istio-system -f 

You will see your pods being added into ztunnel

And most importantly if you run 

istioctl ztunnel-config workload, you see that httpbin is communicating via HBONE protocol. 

Some FAQs

Can you run istio ambient mode on a docker container windows? 

No, maybe it will work in Linux.

Can you run istio ambient mode on kind with default CNI? 

Yes, you can try to check out this link if you have an issue

https://github.com/istio/istio/issues/50072#issuecomment-2033268245

Can you run istio ambient mode on kind with calico CNI on Windows? 

No