Intuitive Universal Control Plane for Service Mesh Based on Envoy

DZone 's Guide to

Intuitive Universal Control Plane for Service Mesh Based on Envoy

Democratizing service mesh for all organizations, without sacrificing advanced customization.

· Microservices Zone ·
Free Resource

A universal control!

A universal control!

I had the opportunity to meet with Marco Palladino, CTO and Co-founder, Kong on a recent trip to San Francisco to discuss their decision to open source their universal service mesh, Kuma.

Kuma is based on the open-source Envoy proxy. It's a universal control plane without the limitations of first-generation service mesh technologies since it enables seamless management of any service on the network. It runs on any platform, including Kubernetes (K8s), VMs, containers, and legacy environments. It includes a fast data plane and an advanced control plan for ease of use and to enable users to get more value from a service mesh.

As enterprises adopt distributed architectures, having confidence in network reliability, security and visibility are essential. Initial service mesh solutions lacked the ease-of-use and flexibility needed to ease adoption across every team. Kuma automates the process of securing the underlying network, ensuring reliability and making everything observable without having to change any code. It does that for any platform and not just for greenfield or K8s-oriented applications, enabling a more pragmatic cloud-native journey within the organization.

“We now have more microservices talking to each other and the network is the most unreliable piece. This is the problem we are solving with Kuma,” Palladino. “It was important for us to make Kuma platform-agnostic and very easy to get started with on both K8s and VM environments, so developers can start using service mesh immediately even if their organization hasn’t fully moved to K8s yet, providing a smooth path to containerized applications and to K8s itself. We are thrilled to be open-sourcing Kuma and extending the adoption of Envoy, and we will continue to contribute back to the Envoy project as we have done in the past.”

You may also like:  Integration Key to IIoT Success  

Kuma: Service Mesh for All

Kuma is democratizing service mesh for organizations of all types, without sacrificing advanced customization. First-generation meshes lacked a mature control plane, requiring substantial manual work and often custom builds. When they did provide a control plane, it was either hard to use, hard to deploy or built on immature proprietary networking libraries. Kuma is designed for ease of use and enabling rapid adoption of mesh by leveraging the de-facto industry sidecar proxy Envoy.

Built on Envoy, Kuma can easily support all environments in the organization, so new applications can be built-in K8s, yet existing applications can still be leveraged in their traditional environments, providing comprehensive coverage across an organization and the highest business value.

Kuma couples a fast data plane with an advanced control plane that allows users to easily set permissions, expose metrics and set routing rules with just a few commands, by either using native CRDs or a RESTful API. The control plane is the core enabler for the service mesh that holds the master truth for all the service configurations and infinitely scales to manage tens of thousands of services across an organization. Key features include:

  • Software-Defined Security — Kuma enables mTLS for all L4 traffic. Permissions can also be easily set to ensure appropriate access control.
  • Powerful Productivity Capabilities — Kuma enables users to quickly implement tracing and logging, allowing users to better analyze metrics for rapid debugging.
  • Sophisticated Routing and Control (L4 routing, circuit breaking, health checks) — Kuma provides fine-grained traffic control capabilities such as circuit breakers and health checks to enhance L4 routing.

“It’s been amazing to see how quickly Envoy has been adopted by the tech community, and I’m super excited by Kong’s new ‘Kuma’ project,” said Matt Klein, creator of the Envoy proxy. “Kuma brings Kong's proven enterprise developer focus on an Envoy-based service mesh, which will make it faster and easier for companies to create and manage cloud native applications.”

Further Reading

TechTalks With Tom Smith: Keys to Migrating Legacy Apps to Microservices

TechTalks With Tom Smith: VMworld Hybrid Cloud and Multicloud Conversations

cloud ,microservices ,kubernetes ,service mesh ,tom smith

Opinions expressed by DZone contributors are their own.

{{ parent.title || parent.header.title}}

{{ parent.tldr }}

{{ parent.urlSource.name }}