Uninstalling Istio on GKE

This guide shows you how to uninstall the Istio on GKE add-on from a cluster.

Removing Istio from a cluster

The simplest way to remove the Istio on GKE add-on is to delete the cluster. However, if the cluster has an existing application that must be preserved, disabling Istio requires the following steps:

Ensure your default mTLS mode is set to Permissive mTLS.
Shift traffic away from the Istio ingress gateway.

Turn off sidecar auto-injection, if enabled.

kubectl label namespace your-namespace istio-injection=disabled

Restart application pods (for example using rolling restart) to remove the Envoy sidecars.

Remove the Istio control plane with gcloud:

gcloud beta container clusters update my-cluster --project=$PROJECT_ID \
  --update-addons=Istio=DISABLED

Except as otherwise noted, the content of this page is licensed under the Creative Commons Attribution 4.0 License, and code samples are licensed under the Apache 2.0 License. For details, see the Google Developers Site Policies. Java is a registered trademark of Oracle and/or its affiliates.

Last updated 2020-02-06.