NGINX announces 'NGINX Service Mesh' service mesh for Kubernetes
On October 12, 2020,
Introducing NGINX Service Mesh --NGINX
https://www.nginx.com/blog/introducing-nginx-service-mesh/
To build an application by the cooperation of several smaller service
-Security : By encrypting communication between services with Mutual TLS authentication (mTLS), it is possible to prevent information leakage due to hacker attacks. By setting access control, it is also possible to control services that allow communication.
· Traffic management: Controls to gradually increase traffic to newer versions of applications, as well as features such as rate limiting and circuit breakers .
-Visualization : Metrics can be obtained from NGINX Plus and monitored by dash boat with Grafana . You can also track transactions with OpenTracing .
· Hybrid deployment: Legacy services that are not on Kubernetes can also work with mesh services.
The architecture of NGINX Service Mesh is as follows. It is similar to Istio in that it is built with 'Data Plane' that abstracts communication between microservices and 'Control Plane' that handles communication routing, but the sidecar proxy that connects to the service is not Envoy but commercial version NGINX. ' NGINX Plus ' is used. Control Plane is optimized for NGINX Plus and features integrated open source software such as monitoring platforms Grafana and Prometheus , authentication within the service mesh SPIRE , and messaging system NATS .
NGINX Service Mesh is available for managed Kubernetes services such as Amazon Elastic Kubernetes Service (EKS) , Azure Kubernetes Service (AKS) , and Google Kubernetes Engine (GKE), as well as bare metal clusters from the F5 Networks portal. You can download it for free.
Related Posts:
in Software, Posted by darkhorse_log