Is there a way to make the nginx-ingress-controller pods use our valid X.509 certs?
Environment
DX Platform 2x
DX AIOps 2x (APM, OI, AXA)
Resolution
The openssl s_client does not send name of server in SNI by default (like browsers do), you have to specify -servername host to have it send that "-servername apmesrvices-gateway.<wildcardDNS>").
And nginx in k8s requires SNI to route request properly.