Customer is upgrading TAP v1.5.1 to v1.6.2. When they accessed to application through AzureApplicationGateway, they got 502 BadGateway from AzureApplicationGateway.
Access path: AzureApplicationGateway -> AKS -> Envoy -> application(KSVC)

Product Version: 1.6

Cause:
Starting from TAP 1.6, tls.minimum-protocol-version is set to 1.3 by default.
This is a breaking change in TAP, but it's not mentioned in the documentation.
https://techdocs.broadcom.com/us/en/vmware-tanzu/standalone-components/tanzu-application-platform/1-12/tap/overview.html

Workaround:
To configure tls.minimum-protocol-version to 1.2 and restart contour/envoy.