Alternatives to Istio
Compare Istio alternatives for your business or organization using the curated list below. SourceForge ranks the best alternatives to Istio in 2024. Compare features, ratings, user reviews, pricing, and more from Istio competitors and alternatives in order to make an informed decision for your business.
-
1
IBM NS1 Connect
IBM
IBM NS1 Connect offers premium, authoritative DNS and advanced traffic steering to deliver the high-performance, reliable, secure network connectivity that businesses need to meet increasingly sophisticated customer expectations. NS1 Connect’s global anycast network provides the massive capacity and scale needed to keep users reliably connected across the world. An API-first architecture empowers teams to embrace automation and streamline DNS management. Enterprises with complex network infrastructures can take performance to the next level with sophisticated traffic steering capabilities and real-time reporting on DNS observability data. -
2
KrakenD
KrakenD
KrakenD is a high-performance API Gateway optimized for resource efficiency, capable of managing 70,000 requests per second on a single instance. The stateless architecture allows for straightforward, linear scalability, eliminating the need for complex coordination or database maintenance. It supports various protocols and API specifications, with features like fine-grained access controls, data transformation, and caching. Unique to KrakenD is its ability to aggregate multiple API responses into one, streamlining client-side operations. Security-wise, KrakenD aligns with OWASP standards and doesn't store data, making compliance simpler. It offers a declarative configuration and integrates with third-party logging and metrics tools. With transparent pricing and an open-source option, KrakenD is a comprehensive API Gateway solution for organizations prioritizing performance and scalability. -
3
Ambassador
Ambassador Labs
Ambassador Edge Stack is a Kubernetes-native API Gateway that delivers the scalability, security, and simplicity for some of the world's largest Kubernetes installations. Edge Stack makes securing microservices easy with a comprehensive set of security functionality, including automatic TLS, authentication, rate limiting, WAF integration, and fine-grained access control. The API Gateway contains a modern Kubernetes ingress controller that supports a broad range of protocols including gRPC and gRPC-Web, supports TLS termination, and provides traffic management controls for resource availability. Why use Ambassador Edge Stack API Gateway? - Accelerate Scalability: Manage high traffic volumes and distribute incoming requests across multiple backend services, ensuring reliable application performance. - Enhanced Security: Protect your APIs from unauthorized access and malicious attacks with robust security features. - Improve Productivity & Developer Experience -
4
HashiCorp Consul
HashiCorp
A multi-cloud service networking platform to connect and secure services across any runtime platform and public or private cloud. Real-time health and location information of all services. Progressive delivery and zero trust security with less overhead. Receive peace of mind that all HCP connections are secured out of the box. Gain insight into service health and performance metrics with built-in visualization directly in the Consul UI or by exporting metrics to a third-party solution. Many modern applications have migrated towards decentralized architectures as opposed to traditional monolithic architectures. This is especially true with microservices. Since applications are composed of many inter-dependent services, there's a need to have a topological view of the services and their dependencies. Furthermore, there is a desire to have insight into health and performance metrics for the different services. -
5
HAProxy Enterprise
HAProxy Technologies
HAProxy Enterprise is the industry’s leading software load balancer. It powers modern application delivery at any scale and in any environment, providing the utmost performance, observability and security. Load balance by round robin, least connections, URI, IP address and several hashing methods. Make advanced decisions based on any TCP/IP information or HTTP attribute with full logical operator support. Send requests to specific application clusters based on URL, domain name, file extension, client IP address, health state of backends, number of active connections, SSL client certificate, and more. Extend and customize HAProxy with Lua scripts that have access to the request/response pipeline. Maintain users' sessions based on TCP/IP information or any property of the HTTP request (cookies, headers, URI, and more). The world’s fastest, and most widely used software load balancer. -
6
Linkerd
Buoyant
Linkerd adds critical security, observability, and reliability features to your Kubernetes stack—no code change required. Linkerd is 100% Apache-licensed, with an incredibly fast-growing, active, and friendly community. Built in Rust, Linkerd's data plane proxies are incredibly small (<10 mb) and blazing fast (p99 < 1ms). No complex APIs or configuration. For most applications, Linkerd will “just work” out of the box. Linkerd's control plane installs into a single namespace, and services can be safely added to the mesh, one at a time. Get a comprehensive suite of diagnostic tools, including automatic service dependency maps and live traffic samples. Best-in-class observability allows you to monitor golden metrics—success rate, request volume, and latency—for every service. -
7
Knative
Google
Knative, created originally by Google with contributions from over 50 different companies, delivers an essential set of components to build and run serverless applications on Kubernetes. Knative offers features like scale-to-zero, autoscaling, in-cluster builds, and eventing framework for cloud-native applications on Kubernetes. Whether on-premises, in the cloud, or in a third-party data center, Knative codifies the best practices shared by successful real-world Kubernetes-based frameworks. Most importantly, Knative enables developers to focus on writing code without the need to worry about the “boring but difficult” parts of building, deploying, and managing their application. -
8
F5 Aspen Mesh empowers companies to drive more performance from their modern app environment by leveraging the power of their service mesh. As part of F5, Aspen Mesh is focused on delivering enterprise-class products that enhance companies’ modern app environments. Deliver new and differentiating features faster with microservices. Aspen Mesh lets you do that at scale, with confidence. Reduce the risk of downtime and improve your customers’ experience. If you’re scaling microservices to production on Kubernetes, Aspen Mesh will help you get the most out of your distributed systems. Aspen Mesh empowers companies to drive more performance from their modern app environment by leveraging the power of their service mesh. Alerts that decrease the risk of application failure or performance degradation based on data and machine learning models. Secure Ingress safely exposes enterprise apps to customers and the web.
-
9
3scale
Red Hat
3scale is the API infrastructure to build on now, and for the future. We make it easy to manage your APIs for internal or external users. Share, secure, distribute. Control who gets access to your APIs. Implement your corporate business, usage, and governance policies from a simple console. Package APIs in the tiers of service that make sense for your business. Take advantage of a wide range of authentication patterns and credentials to create the safest interactions for your partners, customers, and users. Plan, design, implement, publish, govern, operate, analyze, optimize, and retire your APIs from a one continuous experience. Implement this lifecycle in an open standard devops pipeline. Foster a community of users with a sophisticated developer portal. Design your own systems for provisioning developers and provide the content and tools they need with a CMS out of the box. Provide interactive documentation to speed developers to productive use.Starting Price: $750 per month -
10
Anthos
Google
Anthos lets you build, deploy, and manage applications anywhere in a secure, consistent manner. You can modernize existing applications running on virtual machines while deploying cloud-native apps on containers in an increasingly hybrid and multi-cloud world. Our application platform provides a consistent development and operations experience across all your deployments while reducing operational overhead and improving developer productivity. Anthos GKE: Enterprise-grade container orchestration and management service for running Kubernetes clusters anywhere, in both cloud and on-premises environments. Anthos Config Management: Define, automate, and enforce policies across environments in order to meet your organization’s unique security and compliance requirements. Anthos Service Mesh: Anthos unburdens operations and development teams by empowering them to manage and secure traffic between services while monitoring, troubleshooting, and improving application performance. -
11
StackRox
StackRox
Only StackRox provides comprehensive visibility into your cloud-native infrastructure, including all images, container registries, Kubernetes deployment configurations, container runtime behavior, and more. StackRox’s deep integration with Kubernetes delivers visibility focused on deployments, giving security and DevOps teams a comprehensive understanding of their cloud-native infrastructure, including images, containers, pods, namespaces, clusters, and their configurations. You get at-a-glance views of risk across your environment, compliance status, and active suspicious traffic. Each summary view enables you to drill into more detail. Using StackRox, you can easily identify and analyze container images in your environment with native integrations and support for nearly every image registry. -
12
Traefik
Traefik Labs
What is Traefik Enterprise Edition? TraefikEE is a cloud-native load balancer and Kubernetes ingress controller that eases networking complexity for application teams. Built on top of open source Traefik, TraefikEE brings exclusive distributed and high-availability features combined with premium bundled support for production grade deployments. Split into proxies and controllers, TraefikEE supports clustered deployments to increase security, scalability and high availability. Deploy applications anywhere, on-premises or in the cloud, and natively integrate with top-notch infrastructure tooling. Save time and give better consistency while deploying, managing, and scaling applications by leveraging dynamic and automatic TraefikEE features. Improve the application development and delivery cycle by giving developers the visibility and ownership of their services. -
13
Calico Cloud
Tigera
Pay-as-you-go security and observability SaaS platform for containers, Kubernetes, and cloud. Get a live view of dependencies and how all the services are communicating with each other in a multi-cluster, hybrid and multi-cloud environment. Eliminate setup and onboarding steps and troubleshoot your Kubernetes security and observability issues within minutes. Calico Cloud is a next-generation security and observability SaaS platform for containers, Kubernetes, and cloud. It enables organizations of all sizes to protect their cloud workloads and containers, detect threats, achieve continuous compliance, and troubleshoot service issues in real-time across multi-cluster, multi-cloud, and hybrid deployments. Calico Cloud is built on Calico Open Source, the most widely adopted container networking and security solution. Instead of managing a platform for container and Kubernetes security and observability, teams consume it as a managed service for faster analysis, relevant actions, etc.Starting Price: $0.05 per node hour -
14
Cilium
Cilium
Cilium is open-source software for providing, securing and observing network connectivity between container workloads, cloud native, and fueled by the revolutionary Kernel technology eBPF. Kubernetes doesn't come with an implementation of Load Balancing. This is usually left as an exercise for your cloud provider or in private cloud environments an exercise for your networking team. Cilium can attract this traffic with BGP and accelerate leveraging XDP and eBPF. Together these technologies provide a very robust and secure implementation of load balancing. Cilium and eBPF operate at the kernel layer. With this level of context, we can make intelligent decisions about how to connect different workloads whether on the same node or between clusters. With eBPF and XDP Cilium enables significant improvements in latency and performance and eliminates the need for Kube-proxy entirely. -
15
Tetrate
Tetrate
Connect and manage applications across clusters, clouds, and data centers. Coordinate app connectivity across heterogeneous infrastructure from a single management plane. Integrate traditional workloads into your cloud-native application infrastructure. Create tenants within your business to define fine-grained access control and editing rights for teams on shared infrastructure. Audit the history of changes to services and shared resources from day zero. Automate traffic shifting across failure domains before your customers notice. TSB sits at the application edge, at cluster ingress, and between workloads in your Kubernetes and traditional compute clusters. Edge and ingress gateways route and load balance application traffic across clusters and clouds while the mesh controls connectivity between services. A single management plane configures connectivity, security, and observability for your entire application network. -
16
Anthos Service Mesh
Google
Designing your applications as microservices provides many benefits. However, your workloads can become complex and fragmented as they scale. Anthos Service Mesh is Google's implementation of the powerful Istio open source project, which allows you to manage, observe, and secure services without having to change your application code. Anthos Service Mesh simplifies service delivery, from managing mesh telemetry and traffic to protecting communications between services, significantly reducing the burden on development and operations teams. Anthos Service Mesh is Google's fully managed service mesh, allowing you to easily manage these complex environments and reap all the benefits they offer. As a fully managed offering, Anthos Service Mesh takes the guesswork and effort out of purchasing and managing your service mesh solution. Focus on building great apps and let us take care of the mesh. -
17
Calisti
Cisco
Calisti enables security, observability, traffic management for microservices and cloud native applications, and allows admins to switch between live and historical views. Configuring Service Level Objectives (SLOs), burn rate, error budget and compliance monitoring, Calisti sends a GraphQL alert to automatically scale based on SLO burn rate. Calisti manages microservices running on containers and virtual machines, allowing for application migration from VMs to containers in a phased manner. Reducing management overhead by applying policies consistently and meeting application Service Level Objectives across both K8s and VMs. Istio has new releases every three months. Calisti includes our Istio Operator that automates lifecycle management, and even enables canary deployment of the platform itself. -
18
Istio is an open technology that provides a way for developers to seamlessly connect, manage and secure networks of different microservices — regardless of platform, source or vendor. Istio is currently one of the fastest-growing open-source projects based on Github contributors, and its strength is its community. IBM is proud to be a founder and contributor of the Istio project and a leader of Istio Working Groups. Istio on IBM Cloud Kubernetes Service is offered as a managed add-on that integrates Istio directly with your Kubernetes cluster. A single click deploys a tuned, production-ready Istio instance on your IBM Cloud Kubernetes Service cluster. A single click runs Istio core components and tracing, monitoring and visualization tools. IBM Cloud updates all Istio components and manages the control-plane component's lifecycle.
-
19
Gloo Mesh
solo.io
Today's Kubernetes environments need help in scaling, securing and observing modern cloud-native applications. Gloo Mesh, based on the industry's leading Istio service mesh, simplifies multi-cloud and multi-cluster management of service mesh for containers and virtual machines. Gloo Mesh helps platform engineering teams to reduce costs, reduce risks, and improve application agility. Gloo Mesh is a modular component of Gloo Platform. The service mesh allows for application-aware network tasks to be managed independently from the application, adding observability, security, and reliability to distributed applications. By introducing the service mesh to your applications, you can: Simplify the application layer Provide more insights into your traffic Increase the security of your application -
20
Kiali
Kiali
Kiali is a management console for Istio service mesh. Kiali can be quickly installed as an Istio add-on or trusted as a part of your production environment. Using Kiali wizards to generate application and request routing configuration. Kiali provides Actions to create, update and delete Istio configuration, driven by wizards. Kiali offers a robust set of service actions, with accompanying wizards. Kiali provides a list and detailed views for your mesh components. Kiali provides filtered list views of all your service mesh definitions. Each view provides health, details, YAML definitions and links to help you visualize your mesh. Overview is the default Tab for any detail page. The overview tab provides detailed information, including health status, and a detailed mini-graph of the current traffic involving the component. The full set of tabs, as well as the detailed information, varies based on the component type. -
21
greymatter.io
greymatter.io
Maximize your resources. Ensure optimal use of your clouds, platforms, and software. This is application and API network operations management redefined. The same governance rules, observability, auditing, and policy control for every application, API, and network across your multi-cloud, data center and edge environments, all in one place. Zero-trust micro-segmentation, omni-directional traffic splitting, infrastructure agnostic attestation, and traffic management to secure your resources. IT-informed decision-making is real. Application, API & network monitoring and control generate massive IT operations data. Use it in real time through AI. Logging, metrics, tracing, and audits through Grey Matter simplifies integration and standardizes aggregation for all IT Operations data. Fully leverage your mesh telemetry and securely and flexibly future-proof your hybrid infrastructure. -
22
Kentik
Kentik
Kentik delivers the insight and network analytics you need to run all of your networks. Old and new. The ones you own and the ones you don't. Monitor your traffic from your network to the cloud to the internet on one screen. We provide: - Network Performance Analytics - Hybrid and Multi-Cloud Analytics (GCP, AWS, Azure) - Internet and Edge Performance Monitoring - Infrastructure Visibility - DNS Security and DDoS Attack Defense - Data Center Analytics - Application Performance Monitoring - Capacity Planning - Container Networking - Service Provider Intelligence - Real Time Network Forensics - Network Costs Analytics All on One Platform for Visibility, Performance, and Security. Trusted by Pandora, Box, Cogent, Tata, Yelp, University of Washington, GTT and more! Free trial or demo! -
23
Kuma
Kuma
The open-source control plane for service mesh, delivering security, observability, routing and more. Built on top of Envoy, Kuma is a modern control plane for Microservices & Service Mesh for both K8s and VMs, with support for multiple meshes in one cluster. Out of the box L4 + L7 policy architecture to enable zero trust security, observability, discovery, routing and traffic reliability in one click. Getting up and running with Kuma only requires three easy steps. Natively embedded with Envoy proxy, Kuma Delivers easy to use policies that can secure, observe, connect, route and enhance service connectivity for every application and services, databases included. Build modern service and application connectivity across every platform, cloud and architecture. Kuma supports modern Kubernetes environments and Virtual Machine workloads in the same cluster, with native multi-cloud and multi-cluster connectivity to support the entire organization. -
24
Traefik Mesh
Traefik Labs
Traefik Mesh is a straight-forward, easy to configure, and non-invasive service mesh that allows visibility and management of the traffic flows inside any Kubernetes cluster. By improving monitoring, logging, and visibility, as well as implementing access controls. Allows administrators to increase the security of their clusters easily and quickly. By being able to monitor and trace how applications communicate in your Kubernetes cluster, administrators are able to optimize internal communications, and improve application performance. Reducing the time to learn, install, and configure makes it easier to implement, and to provide value for the time actually spent implementing. Administrators can focus on their business applications. Being open source means that there is no vendor lock-in, as Traefik Mesh is opt-in by design. -
25
Kong Mesh
Kong
Enterprise service mesh based on Kuma for multi-cloud and multi-cluster on both Kubernetes and VMs. Deploy with a single command. Connect to other services automatically with built-in service discovery, including an Ingress resource and remote CPs. Support across any environment, including multi-cluster, multi-cloud and multi-platform on both Kubernetes and VMs. Accelerate initiatives like zero-trust and GDPR with native mesh policies, improving the speed and efficiency of every application team. Deploy a single control plane that can scale horizontally to many data planes, or support multiple clusters or even hybrid service meshes running on both Kubernetes and VMs combined. Simplify cross-zone communication using an Envoy-based ingress deployment on both Kubernetes and VMs, as well as the built-in DNS resolver for service-to-service communication. Built on top of Envoy with 50+ observability charts out of the box, you can collect metrics, traces, and logs of all L4-L7 traffic.Starting Price: $250 per month -
26
Meshery
Meshery
Describe all of your cloud native infrastructure and manage as a pattern. Design your service mesh configuration and workload deployments. Apply intelligent canary strategies and performance profiles with service mesh pattern management. Assess your service mesh configuration against deployment and operational best practices with Meshery's configuration validator. Validate your service mesh's conformance to Service Mesh Interface (SMI) specifications. Dynamically load and manage your own WebAssembly filters in Envoy-based service meshes. Service mesh adapters provision, configure, and manage their respective service meshes. -
27
Toil-free traffic management for your service mesh. Service mesh is a powerful abstraction that's become increasingly popular to deliver microservices and modern applications. In a service mesh, the service mesh data plane, with service proxies like Envoy, moves the traffic around and the service mesh control plane provides policy, configuration, and intelligence to these service proxies. Traffic Director is GCP's fully managed traffic control plane for service mesh. With Traffic Director, you can easily deploy global load balancing across clusters and VM instances in multiple regions, offload health checking from service proxies, and configure sophisticated traffic control policies. Traffic Director uses open xDSv2 APIs to communicate with the service proxies in the data plane, which ensures that you are not locked into a proprietary interface.
-
28
Envoy
Envoy Proxy
As on the ground microservice practitioners quickly realize, the majority of operational problems that arise when moving to a distributed architecture are ultimately grounded in two areas: networking and observability. It is simply an orders of magnitude larger problem to network and debug a set of intertwined distributed services versus a single monolithic application. Envoy is a self contained, high performance server with a small memory footprint. It runs alongside any application language or framework. Envoy supports advanced load balancing features including automatic retries, circuit breaking, global rate limiting, request shadowing, zone local load balancing, etc. Envoy provides robust APIs for dynamically managing its configuration. -
29
Streamline and simplify Kubernetes (north-south) network traffic management, delivering consistent, predictable performance at scale without slowing down your apps. Advanced app‑centric configuration – Use role‑based access control (RBAC) and self‑service to set up security guardrails (not gates), so your teams can manage their apps securely and with agility. Enable multi‑tenancy, reusability, simpler configs, and more. A native, type‑safe, and indented configuration style to simplify capabilities like circuit breaking, sophisticated routing, header manipulation, mTLS authentication, and WAF. Plus if you’re already using NGINX, NGINX Ingress resources make it easy to adapt existing configuration from your other environments.
-
30
The always-free NGINX Service Mesh scales from open source projects to a fully supported, secure, and scalable enterprise‑grade solution. Take control of Kubernetes with NGINX Service Mesh, featuring a unified data plane for ingress and egress management in a single configuration. The real star of NGINX Service Mesh is the fully integrated, high-performance data plane. Leveraging the power of NGINX Plus to operate highly available and scalable containerized environments, our data plane brings a level of enterprise traffic management, performance, and scalability to the market that no other sidecars can offer. It provides the seamless and transparent load balancing, reverse proxy, traffic routing, identity, and encryption features needed for production-grade service mesh deployments. When paired with the NGINX Plus-based version of NGINX Ingress Controller, it provides a unified data plane that can be managed with a single configuration.
-
31
AWS App Mesh
Amazon Web Services
AWS App Mesh is a service mesh that provides application-level networking to facilitate communication between your services across various types of computing infrastructure. App Mesh offers comprehensive visibility and high availability for your applications. Modern applications are generally made up of multiple services. Each service can be developed using various types of compute infrastructure, such as Amazon EC2, Amazon ECS, Amazon EKS, and AWS Fargate. As the number of services within an application grows, it becomes difficult to pinpoint the exact location of errors, redirect traffic after errors, and safely implement code changes. Previously, this required creating monitoring and control logic directly in your code and redeploying your services every time there were changes.Starting Price: Free -
32
KubeSphere
KubeSphere
KubeSphere is a distributed operating system for cloud-native application management, using Kubernetes as its kernel. It provides a plug-and-play architecture, allowing third-party applications to be seamlessly integrated into its ecosystem. KubeSphere is also a multi-tenant enterprise-grade open-source Kubernetes container platform with full-stack automated IT operations and streamlined DevOps workflows. It provides developer-friendly wizard web UI, helping enterprises to build out a more robust and feature-rich Kubernetes platform, which includes the most common functionalities needed for enterprise Kubernetes strategies. A CNCF-certified Kubernetes platform, 100% open-source, built and improved by the community. Can be deployed on an existing Kubernetes cluster or Linux machines, supports the online and air-gapped installation. Deliver DevOps, service mesh, observability, application management, multi-tenancy, storage, and networking management in a unified platform. -
33
Weave Net
Weaveworks
Quickly, easily, and securely network and cluster containers across any environment. Whether on premises, in the cloud, or hybrid, there’s no code or configuration. Weave Net is a powerful cloud native networking toolkit. It creates a virtual network that connects Docker containers across multiple hosts and enables their automatic discovery. Set up subsystems and sub-projects that provide DNS, IPAM, a distributed virtual firewall and more. Net’s mesh architecture and gossip protocol are key to its resilience and ability to tolerate, then recover from, network partitions. Whether you’re connecting containers on-premise, in a cloud, across multiple clouds or any combination of these, Weave Net just works. Net is incredibly easy to use. Built on a decentralized architecture, Net doesn’t depend on an external configuration service for coordination and storage that must be highly available and ready to use. -
34
Infoblox DDI
Infoblox
Network landscapes are rapidly evolving, driven by trends in hybrid and multi-cloud migration, security, SDN, NFV, IPv6 adoption and the Internet of Things (IoT). Against this backdrop of soaring network complexity, all organizations today require specialized solutions that simplify and optimize what it takes to execute DNS, DHCP and IP address management, the critical network services collectively known as DDI that make all network interactions possible. Infoblox applications and appliances are uniquely able to support all your DDI demands—today and down the road. Need to centralize control of advanced DDI services on-site while seamlessly integrating with cloud and virtualization platforms? We’ve got you covered. Want to radically improve networking in remote and branch locations by managing DDI in the cloud? Check. Want to see all network assets across all infrastructure in one place? You got it. It’s DDI your way. -
35
ServiceStage
Huawei Cloud
Deploys your applications using containers, VMs, or serverless, and easily implements auto scaling, performance analysis, and fault diagnosis. Supports native Spring Cloud and Dubbo frameworks and Service Mesh, provides all-scenario capabilities, and supports mainstream languages such as Java, Go, PHP, Node.js, and Python. Supports cloud-native transformation of Huawei core services, meeting strict performance, usability, and security compliance requirements. Development frameworks, running environments, and common components are available for web, microservice, mobile, and AI applications. Full management of applications throughout the entire process, including deployment and upgrade. Monitoring, events, alarms, logs, and tracing diagnosis, and built-in AI capabilities, making O&M easy. Creates a flexibly customizable application delivery pipeline with only a few clicks.Starting Price: $0.03 per hour-instance -
36
Network Service Mesh
Network Service Mesh
A common flat vL3 domain allowing DBs running in multiple clusters/clouds/hybrid to communicate just with each other for DB replication. Workloads from multiple companies connecting to a single ‘collaborative’ Service Mesh for cross company interactions. Each workload has a single option of what connectivity domain to be connected to, and only workloads in a given runtime domain could be part of its connectivity domain. In short: Connectivity Domains are Strongly Coupled to Runtime Domains. A central tenant of Cloud Native is Loose Coupling. In a Loosely Coupled system, the ability for each workload to receive service from alternative providers is preserved. What Runtime Domain a workload is running in is a non-sequitur to its communications needs. Workloads that are part of the same App need Connectivity between each other no matter where they are running.Starting Price: Free -
37
Gloo
Solo.io
Gloo Platform integrates API gateway, API management, Kubernetes Ingress, Istio service mesh and cloud-native networking into a unified application networking platform. By addressing both internal and external communication security, the unified Gloo Platform UI and API leads to more automation and faster app deployment times, reduces time-to-value for new applications and services deployments, and makes you more competitive in your markets. Customers may start by addressing one challenge, but the unified nature of Gloo Platform makes it easy to solve your next challenge using the same solution. This makes it easier to introduce concepts like zero trust security to your modern infrastructure today. Gloo Platform components are powered by open source projects like Envoy proxy, Istio service mesh, and Cilium CNI. -
38
Mavenir Webscale Platform
Mavenir
5G technology is very different in nature when compared to previous generations of wireless networks. 5G can be viewed as a collection of end-to-end use cases rather than just a collection of technology. Use cases include, but are not limited to – remote healthcare, autonomous cars, industrial advanced robotics, smart utilities, smart agriculture and more. These use cases require a different network architecture comprised of various features. This allows the wireless service providers to have one network for all devices 2G to 5G. It is the common software across Mavenir products and services that enables agility and speed in the delivery of new applications, as well as the adoption of new technologies. It is unique because it brings the best practices from the hyper- scale cloud and IT industries for rapid design, development, testing and rollout. -
39
Converged Cloud Fabric
Arista
Converged Cloud Fabric (CCF)™ is an automated fabric built with cloud networking design principles. CCF leverages VPC/VNet constructs on-prem to deliver a cloud Network-as-a-Service operational model. CCF automates networking for multiple private cloud platforms, enabling the network to operate at the speed of VMs and Containers. With built-in analytics and telemetry, CCF provides real-time contextual visibility across the fabric and one-click troubleshooting workflows. With CCF, NetOps, DevOps and CloudOps teams can effectively collaborate, and rapidly on-board applications and tenants. CCF enables mainstream and midsize organizations to leverage network as a strategic pillar of the digital transformation strategy. With CCF's self-service networking and contextual intelligence, NetOps team can focus on innovations such as new services and analytics, instead of time-consuming manual tasks. -
40
Weaveworks
Weaveworks
Continuous delivery for application teams and continuous control for platform teams. Automate Kubernetes with GitOps one pull request at a time. The multi cluster-control plane allows cluster operators to control and observe across any Kubernetes. Immediately detect drift and evaluate cluster health or even inform roll back actions as well as monitor continuous operations. Rapidly create, update and manage production ready application clusters with all of the add-ons needed for an agile cloud native platform with a single click. Reliability through automation. Minimize operations overhead with automated cluster lifecycle management: upgrades, security patches, and cluster extension updates. GitOps is an operating model for cloud native applications running on Kubernetes. The GitOps methodology enables continuous software delivery through automated pipelines. It focuses on a developer centric experience to deploy, monitor and manage workloads by using your version control system. -
41
VMware NSX
Broadcom
Full-Stack Network and Security Virtualization with VMware NSX. Enable your virtual cloud network to connect and protect applications across your data center, multi cloud, bare metal, and container infrastructure. VMware NSX Data Center delivers a complete L2-L7 networking and security virtualization platform — providing the ability to manage the entire network as a single entry from a single pane of glass. Bring one-click provisioning to your networking and security services — access powerful flexibility, agility, and scale — by running a complete L2-L7 stack in software, decoupled from underlying physical hardware. Manage consistent networking and security policies across private and public clouds, from a single pane of glass, regardless of where your application runs – VM, container, or bare metal. Deliver granular protection for your apps via micro-segmentation to the individual workload.Starting Price: $4,250 -
42
Nuage Networks Virtualized Services Platform
Nuage Networks from Nokia
Transform your network and prepare for the era of end to end network automation with the Nuage Networks Virtualized Services Platform (VSP). With VSP you can provide SDN and SD-WAN network automation across networks and clouds of all sizes and architectures from data center private clouds to large enterprise WANs to the largest public clouds in the world. Offered through over 70 Managed Service Provider Partners worldwide, our open, secure and multi-cloud enabled wide area networking solution gives your business all the benefits of SD-WAN, plus the flexibility to choose the approach that best meets your digital transformation needs. The Nuage Networks Virtualized Services Platform (VSP) is the industry leading network automation platform enabling a complete range of SDN, SD-WAN, and cloud solutions. VSP provides advanced network automation across networks and clouds of all sizes and architectures, from datacenter private clouds to large enterprise wide area networks (WANs). -
43
Critical Stack
Capital One
Deploy applications quickly and confidently with Critical Stack, the open source container orchestration tool from Capital One. Critical Stack enforces the highest level of governance and security standards, enabling teams to efficiently scale containerized applications in the strictest environments. View your entire environment and deploy new services with a few simple clicks. Spend more time on development and decision making and less on maintenance. Dynamically adjust shared resources of your environment efficiently. Enforce container networking policies and controls that your teams can configure. Speed up development cycles and deployment of containerized applications. Guarantee containerized applications run according to your specifications. Deploy containerized applications confidently. Critical Stack enables application verification and powerful orchestration capabilities for your important workloads. -
44
Project Calico
Project Calico
Calico is an open-source networking and network security solution for containers, virtual machines, and native host-based workloads. Calico supports a broad range of platforms including Kubernetes, OpenShift, Mirantis Kubernetes Engine (MKE), OpenStack, and bare metal services. Whether you opt to use Calico's eBPF data plane or Linux’s standard networking pipeline, Calico delivers blazing-fast performance with true cloud-native scalability. Calico provides developers and cluster operators with a consistent experience and set of capabilities whether running in the public cloud or on-prem, on a single node, or across a multi-thousand-node cluster. Calico gives you a choice of data planes, including a pure Linux eBPF data plane, a standard Linux networking data plane, and a Windows HNS data plane. Whether you prefer the cutting-edge features of eBPF or the familiarity of the standard primitives that existing system administrators already know, Calico has you covered.Starting Price: Free -
45
Open vSwitch
Open vSwitch
Open vSwitch is a production quality, multilayer virtual switch licensed under the open source Apache 2.0 license. It is designed to enable massive network automation through programmatic extension, while still supporting standard management interfaces and protocols (e.g. NetFlow, sFlow, IPFIX, RSPAN, CLI, LACP, 802.1ag). In addition, it is designed to support distribution across multiple physical servers similar to VMware's vNetwork distributed vswitch or Cisco's Nexus 1000V. Open vSwitch is used in multiple products and runs in many large production environments (some very, very large). Each stable release is run through a regression suite of hundreds of system-level tests and thousands of unit tests. In addition to OVS, the Open vSwitch community maintains the OVN project. OVN complements the existing capabilities of OVS to add native support for virtual network abstractions, such as virtual L2 and L3 overlays and security groups.Starting Price: Free -
46
Netmaker
Netmaker
Netmaker is an open source tool based on the groundbreaking WireGuard protocol. Netmaker unifies distributed environments with ease, from multi-cloud to Kubernetes. Netmaker enhances Kubernetes clusters by providing flexible and secure networking for cross-environment scenarios. Netmaker uses WireGuard for modern, secure encryption. It is built with zero trust in mind, utilizes access control lists, and follows leading industry standards for secure networking. Netmaker enables you to create relays, gateways, full VPN meshes, and even zero trust networks. Netmaker is fully configurable to let you maximize the power of Wireguard. -
47
Buoyant Cloud
Buoyant
Fully managed Linkerd, right on your cluster. Running a service mesh shouldn’t require a team of engineers. Buoyant Cloud manages Linkerd so that you don’t have to. Automate away the toil. Buoyant Cloud automatically keeps your Linkerd control plane and data plane up to date with the latest versions and handles installs, trust anchor rotation, and more. Automate upgrades, installs, and more. Keep data plane proxy versions always in sync. Rotate TLS trust anchors without breaking a sweat. Never get taken unaware. Buoyant Cloud continuously monitors the health of your Linkerd deployments and proactively alerts you of potential issues before they escalate. Automatically track service mesh health. Get a global, cross-cluster view of Linkerd's behavior. Monitor and report Linkerd best practices. Forget overly-complicated solutions that pile one layer of complexity on top of another. Linkerd just works, and Buoyant Cloud makes Linkerd easier than ever.¿ -
48
ARMO
ARMO
ARMO provides total security for in-house workloads and data. Our patent-pending technology prevents breaches and protects against security overhead regardless of your environment, cloud-native, hybrid, or legacy. ARMO protects every microservice and protects it uniquely. We do this by creating a cryptographic code DNA-based workload identity, analyzing each application’s unique code signature, to deliver an individualized and secure identity to every workload instance. To prevent hacking, we establish and maintain trusted security anchors in the protected software memory throughout the application execution lifecycle. Stealth coding-based technology blocks all attempts at reverse engineering of the protection code and ensures comprehensive protection of secrets and encryption keys while in-use. Our keys are never exposed and thus cannot be stolen. -
49
Apache ServiceComb
ServiceComb
Open-source, full-stack microservice solution. With out-of-the-box, high performance, compatible with popular ecology, and multi-language support. Service contract guarantee based on OpenAPI. One-click scaffolding, out of the box, speeds up the building of microservice applications. The ecological extension supports multiple development languages such as Java/Golang/PHP/NodeJS. Apache ServiceComb is an open-source solution for microservices. It consists of multiple components that can be flexibly adapted to different scenarios through the combination of components. This guide can help you get started quickly with Apache ServiceComb, which is the best place to start trying for first-time users. To decouple the programming and communication models, so that a programming model can be combined with any communication models as needed. Application developers only need to focus on APIs during development and can flexibly switch communication models during deployment.Starting Price: Free -
50
VMware Avi Load Balancer
Broadcom
Simplify application delivery with software-defined load balancers, web application firewall, and container ingress services for any application in any data center and cloud. Simplify administration with centralized policies and operational consistency across on-premises data centers, and hybrid and public clouds, including VMware Cloud (VMC on AWS, OCVS, AVS, GCVE), AWS, Azure, Google, and Oracle Cloud. Free infrastructure teams from manual tasks and enable DevOps teams with self-service. Application delivery automation toolkits include Python SDK, RESTful APIs, Ansible and Terraform integrations. Gain unprecedented insights, including network, end users and security, with real-time application performance monitoring, closed-loop analytics and deep machine learning.