Uninstalling Istio on GKE

This guide shows you how to uninstall the Istio on GKE add-on from a cluster.

Removing Istio from a cluster

The simplest way to remove the Istio on GKE add-on is to delete the cluster. However, if the cluster has an existing application that must be preserved, disabling Istio requires the following steps:

Ensure your default mTLS mode is set to Permissive mTLS.
Shift traffic away from the Istio ingress gateway.

Turn off sidecar auto-injection, if enabled.

kubectl label namespace your-namespace istio-injection=disabled

Restart application pods (for example using rolling restart) to remove the Envoy sidecars.

Remove the Istio control plane with gcloud:

gcloud beta container clusters update my-cluster --project=$PROJECT_ID \
  --update-addons=Istio=DISABLED

Was this page helpful? Let us know how we did:

Except as otherwise noted, the content of this page is licensed under the Creative Commons Attribution 4.0 License, and code samples are licensed under the Apache 2.0 License. For details, see our Site Policies. Java is a registered trademark of Oracle and/or its affiliates.

Last updated January 28, 2019.

Uninstalling Istio on GKE

Removing Istio from a cluster

Send feedback about...