Hey @Flynn and @arielzadino isn’t this stopping nginx from sending traffic to the injected linkerd proxy for ports 80 and 443? In theory this sounds a workaround if you don’t allow unmeshed traffic with authorization policy this should be an issue!
I think if there is a way the mtls cert from the NGINX ingress to be generated by cert manager if it is used by Linkerd to be a better workaround as this way nginx will authenticate to backend pods. Only metric collections could be impacted but Nginx Plus should handle this.