Join the Team at KubeCon North America 2021 – October 11 – 15!

The team is excited to be participating at KubeCon + CloudNativeCon North America 2021! Whether you visit us virtually (Oct 11-15) or in Los Angeles, CA (Oct. 13-15), our team of service mesh experts will be ready to answer your questions or provide a demo. In addition, our team will be presenting a keynote […]

Erik Frieberg | October 11, 2021
Read More

What is Istio?

This 7-minute read is meant to be primer for developers, operators, and anyone curious about Istio service mesh. Istio basics To answer the question “what is Istio?”, we need to establish some context first. Modern applications are often composed of microservices that run in containers distributed on-premises and in the cloud. As they are decomposed […]

Nikki Rouda | September 8, 2021
Read More

Sail farther with Istio discovery selectors and long term support

A few months ago, while working with some of our large-scale customers at, we discovered that the Istio control plane watches all Services, Pods, and Endpoints in a cluster even if only a few of these services were running in the service mesh. Our customers shared their concerns that the Istio control plane processes […]

Lin Sun | May 26, 2021
Read More

Happy Birthday Istio!

Istio turns 4 today! This month, I’ve also reached 20 years working in the software industry, time flies!  Out of these years, I have seldom worked on a project for over 3 years. The Istio project is one of the exceptions that I worked on for over 3 years. I still remember in the very […]

Lin Sun | May 24, 2021
Read More

Challenges of running Istio distroless images

At, we work with customers running Istio at massive scale, in secure environments, and in highly-regulated environments (FIPS/FedRAMP, PCI, etc). Our Gloo Mesh builds of Istio are based on the upstream builds with LTS (N-3) and enterprise Severity-1 response times (ie, security patching, production break/fix, feature backporting,  etc). Unlike other Istio distributions, we do […]

Christian Posta | April 28, 2021
Read More

Advanced Authentication Workflows with OpenID Connect using Gloo API Gateway

Gloo supports authentication via OpenID Connect (OIDC). OIDC is an identity layer on top of the OAuth 2.0 protocol. In OAuth 2.0 flows, authentication is performed by an external Identity Provider (IdP) which, in case of success, returns an Access Token representing the user identity. The protocol does not define the contents and structure of […]

Denis Jannot | October 26, 2020
Read More

End User Case Study: Zymergen

Today’s post features a Q&A with Gigi Jackson, Staff SRE at Zymergen, and their modernization to Kubernetes. Zymergen is a science and material innovation company that is rethinking biology and reimagining the world. Zymergen brings together life, data and computer science to create never-before imagined materials and products across industries – from agriculture to electronics, […] | September 1, 2020
Read More

Debugging Microservices in Red Hat OpenShift with Solo Squash

Microservices architecture has provided the ability to ship software more frequently and faster than ever. With lots of independent, loosely coupled services distributed across an environment, debugging issues can be a difficult task. Red Hat OpenShift® is an enterprise Kubernetes platform that RHEL customers can use to build and operate cloud-native microservices. Our pals Didier […] | May 2, 2019
Read More

Debugging Istio control plane with Squash Squash is a distributed debugger that supports multiple languages. When running in a container environment like Kubernetes, debugging applications can be difficult especially when distributed into multiple containers with implementations in potentially different languages. Squash can be used to set up language-native debuggers, provide all the plumbing through Kubernetes, and expose that to your […]

Christian Posta | April 19, 2019
Read More

Squash, the definitive cloud-native debugging tool

Squash 0.5 is out. This new release addresses enterprise debugging use cases making it the most pervasive debugging tool for cloud-native applications. The ability to do live debugging of an application is an essential piece in the development process. It bothers me, and I often have a hard time understanding how developers can purely rely […] Engineering | March 8, 2019
Read More

Unik is here to help bring AWS Firecracker to serverless apps

On Tuesday AWS announced Firecracker, an open-source microVM for serverless computing. A microVM that can be launched in just over a tenth of a second is particularly useful for event-driven, lightweight, or short-lived workloads. At the same time, it benefits from the extended security of hardware virtualization. Today we announce the integration of Firecracker into […]

Idit Levine | December 1, 2018
Read More

Worried about IoT DDoS? Think Unikernels

On Friday (October 21st 2016) the world became aware of the Internet’s vulnerability, as millions of users found themselves disconnected from their favorite websites, and could not even tweet about it. This massive attack, aimed at the DNS provider Dyn, was famously launched with the help of hacked “Internet of Things” (IoT) devices, such as […]

Idit Levine | April 9, 2018
Read More