Service Mesh

Enable microservices with reliable, secure, and scalable communications

So what is a service mesh?

As applications are decomposed from monoliths, all of the resulting microservices need new tools to address the connectivity challenges that arise in handling distributed services. Modern applications are often composed of tens, hundreds, or more microservices that run in containers distributed on-premises and in the cloud. An Istio service mesh defines both the control plane (to configure desired service connectivity and behavior) and the data plane (to direct traffic, enforce security rules, and provide observability).

Istio has had years to mature into a robust solution for enterprise environments, but also continues to develop many new innovations with releases on a quarterly cadence. Enterprise Istio service mesh management enhances basic open source Istio with long-term production support, multi-cluster capabilities, advanced/federated security with FIPS-ready builds, software lifecycle management, and everything else you need for successful Day 2 operations.

Application networking is a team sport

While not strictly a security feature of a service mesh, one important consideration is the availability of enterprise support and defined service-level agreements (SLAs) for response. Community support for open source software itself doesn’t meet the requirements for production deployments, so you need a vendor on standby to help you out. Inevitably there will be issues and when a CVE (common vulnerabilities and exposures) incident is discovered, it is reassuring to know that someone can quickly patch your code and even backport the fix to older versions if you haven’t kept up with the rapid pace of new releases.

What is a service mesh?

What is Istio?

Why you need Istio management

You can implement and manage Istio yourself, but you should think about what Istio is going to need in terms of investment. Open source Istio will require a lot of administrative effort to self-support and adapt to enterprise requirements, or you can choose a more comprehensive Istio management product which comes with enterprise production support. If you want to make it easier for your API producing and consuming developers, an Istio-native developer portal enables GitOps and CI/CD methodologies. From a business standpoint, adopting an enterprise solution for Istio service mesh management means you will have reduced risk, increased security, and easier management of the connectivity between Kubernetes-based and legacy applications. Istio management even helps with application modernization and “migration to cloud” initiatives by smoothing the adoption process and providing ongoing updates and support.

Tame the Istio lifecycle

Istio has new releases every quarter, making it hard to keep current. Enjoy automated installation, no-interruption upgrades, inventory, and health checks, and get N-4 version long term support and patching so you can upgrade on your schedule.

Manage application connectivity

For traffic between microservices and traditional applications, you’ll need routing, circuit breaking, rate limiting, load balancing, and locality-aware failover to maintain reliable connections to your resources. Extend capabilities with WebAssembly (Wasm.)

Federate across multiple clusters

Manage application networking with common policies as code implemented consistently everywhere, from one cluster to thousands. Developers and operators can use declarative CRDs, usually as part of a DevOps or GitOps process, to manage traffic, implement security policy, and configure observability.

Get started

Try Gloo Mesh to configure, secure, and manage Istio

Learn more

Discover Gloo Mesh for Istio multi-cluster management

Istio support

Enterprise production support and design help for Istio service meshes

Use Cases

API gateway integration

Easily integrate traffic management into (north/south) and within (east/west) your cluster. Gloo Mesh integrates the Gloo Edge API gateway to any service mesh to configure end to end security, encryption, and traffic control.
Learn More

Multi-cluster management

Streamline management of your service mesh across different clusters in your environment and across the software delivery lifecycle. Avoid issues of potential misconfigurations and manage multiple clusters consistently with a unified dashboard.
Learn more

Multi-Service Mesh

Get the freedom to choose any service mesh today and tomorrow on any infrastructure, and operate them together from a unified dashboard. Group disparate meshes into a single flat network and operate them as a single logical mesh.
Learn more

Service Mesh

Your microservices networking architecture may evolve to service mesh for service-to-service (east/west) communication. Gloo Edge seamlessly integrates to service mesh for end-to-end traffic control and management.
Learn more