IP tagging

This extension has the qualified name envoy.filters.http.ip_tagging

Note

This extension is intended to be robust against untrusted downstream traffic. It assumes that the upstream is trusted.

Tip

This extension extends and can be used with the following extension category:

• envoy.filters.http

This extension must be configured with one of the following type URLs:

• type.googleapis.com/envoy.extensions.filters.http.ip_tagging.v3.IPTagging

IP tagging configuration overview.

extensions.filters.http.ip_tagging.v3.IPTagging

[extensions.filters.http.ip_tagging.v3.IPTagging proto]

{
  "request_type": "...",
  "ip_tags": []
}

request_type

(extensions.filters.http.ip_tagging.v3.IPTagging.RequestType) The type of request the filter should apply to.

ip_tags

(repeated extensions.filters.http.ip_tagging.v3.IPTagging.IPTag, REQUIRED) The set of IP tags for the filter.

extensions.filters.http.ip_tagging.v3.IPTagging.IPTag

[extensions.filters.http.ip_tagging.v3.IPTagging.IPTag proto]

Supplies the IP tag name and the IP address subnets.

{
  "ip_tag_name": "...",
  "ip_list": []
}

ip_tag_name

(string) Specifies the IP tag name to apply.

ip_list

(repeated config.core.v3.CidrRange) A list of IP address subnets that will be tagged with ip_tag_name. Both IPv4 and IPv6 are supported.

Enum extensions.filters.http.ip_tagging.v3.IPTagging.RequestType

[extensions.filters.http.ip_tagging.v3.IPTagging.RequestType proto]

The type of requests the filter should apply to. The supported types are internal, external or both. The x-forwarded-for header is used to determine if a request is internal and will result in x-envoy-internal being set. The filter defaults to both, and it will apply to all request types.

BOTH

(DEFAULT) ⁣Both external and internal requests will be tagged. This is the default value.

INTERNAL

⁣Only internal requests will be tagged.

EXTERNAL

⁣Only external requests will be tagged.