Difficulty: Beginner
Estimated Time: 10 minutes

This scenario demonstrates how to secure HTTP traffic with Envoy Proxy. Securing HTTP traffic is critical to protecting users privacy and data.

In this scenario you will learn how to:

  • Apply SSL certificates for securing HTTP traffic.

  • Redirecting HTTP traffic to HTTPS.

At the end of the scenario, you will have an understanding of how to use TLS certificates to secure HTTP traffic with Envoy.

Congratulations, you successfully configured Envoy Proxy to handle HTTPS traffic.

In this scenario you learned how to:

  • Apply SSL certificates for securing HTTP traffic.

  • Redirecting HTTP traffic to HTTPS.

Securing traffic with HTTPS and SSL/TLS

Step 1 of 4

Step 1 - SSL Certificates

For testing purposes the command below will generate a self-signed certificate for the domain example.com. This self-signed will cause warning messages about the certificate but is ideal for testing configuration locally. When deploying into production, you will need certificates generated for your site from a service such as Let’s Encrypt.

Generate Certificate

The command below creates a new certificate and key within a directory calls certs/. It sets the domain to example.com.

mkdir certs; cd certs;
openssl req -nodes -new -x509 \
  -keyout example-com.key -out example-com.crt \
  -days 365 \
  -subj '/CN=example.com/O=My Company Name LTD./C=US';
cd -

For more information about OpenSSL, visit this link.