[00:50:59] <rzl>	 https://gerrit.wikimedia.org/r/1202879 should address the above
[01:03:20] <cdanis>	 thanks Reuven!
[20:55:20] <brouberol>	 Just checking: there's no way to have ingress over plain TCP in our k8s setup? I'm looking at how to setup ingress for a PG database that will contain synthetic data, but looking at https://wikitech.wikimedia.org/wiki/Kubernetes/Service_ports#Infrastructure_services, it seems that I'll need to make things work over TLS/SNI and decrypt the traffic
[20:55:20] <brouberol>	 at on the pgbouncer / postgresql side. Am I missing something? Thanks!  
[20:58:17] <brouberol>	 I guess another way would be to open a specific nodeport and perform the ingress at the LVS level, but given that this is a temporary database only used for an ad-hoc investigation/exploration work, I'd like to save myself the trouble of having to go through LVS setup if possible :D
[21:56:21] <inflatador>	 I don't know much about istio, but it looks like it's possible: https://istio.io/latest/docs/tasks/security/authorization/authz-tcp/ . Whether that's supported in our version of istio or permissible in our infra, I dunno