Observability Guide for Envoy Gateway Data Plane
A hands-on guide to configuring observability for the data plane of Envoy Gateway using Prometheus, Loki, and Tempo.
Cloud Native
Kubernetes, Service Mesh, Envoy and Gateways.
Leveraging EnvoyPatchPolicy to Extend the Capabilities of Envoy Gateway
Learn how to use EnvoyPatchPolicy to dynamically modify xDS resources in Envoy Gateway, including practical examples such as customizing local replies. Based on Envoy Gateway v1.3.2.
KubeCon EU 2025 Recap: Insights and Trends Shaping the Cloud Native Landscape
I attended KubeCon EU 2025 in London and summarized the conference highlights and trends in a slide deck for you.
Beyond Sidecar: A Deep Dive into Istio Ambient Mode Traffic Mechanism and Cost Efficiency
Overview of Istio Ambient Mode: background, components, traffic flow, and comparison with Sidecar to help you evaluate and adopt this efficient data plane model.
Understanding L7 Traffic Management in Istio Ambient Mode: From ztunnel to Waypoint Proxy
An in-depth exploration of Istio ambient mode’s L7 traffic path, covering transparent interception, policy application, and traffic forwarding from ztunnel to waypoint proxy.
In-Depth Analysis of Istio Installation Methods: Selection and Practical Guide
A deep dive into Istio installation: istioctl recommended, Helm as an alternative, Operator deprecated, API explained for real-world use.
Istio Ambient Mode: Illustrated Terminology and Concept Interpretation
This article provides a detailed glossary of Istio Ambient Mode, helping you understand its key concepts and underlying technical implementation.
Envoy’s ext_proc filter enables flexible request and response processing through gRPC integration.
Implementing HTTP/2 CONNECT Tunnels with Envoy: Concepts and Practical Guide
A deep dive into creating transparent tunnels using HTTP/2 CONNECT, including technical principles, practical workflows, and example code.
Packet Lifecycle and Traffic Optimization in Istio Ambient Mode
An in-depth analysis of the detailed processing of initial packets in Istio Ambient Mode, followed by fast forwarding and traffic optimization strategies for subsequent packets.
In-Pod IPtables Rule Injection in Istio Ambient Mode Explained
A deep dive into how iptables rules in Istio ambient mode enable transparent traffic interception and control within Pods.
Detailed Explanation of Transparent Traffic Interception in Istio ambient mode
This article is the first in a series on Istio ambient mode, focusing on how transparent traffic interception enables a sidecar-free service mesh. It provides an in-depth analysis of the interactions …