Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying Mastering Service Mesh
  • Table Of Contents Toc
Mastering Service Mesh

Mastering Service Mesh

By : Anjali Khatri, Khatri
4.4 (5)
Buy this Book
close
close
Mastering Service Mesh

Mastering Service Mesh

4.4 (5)
By: Anjali Khatri, Khatri
Buy this Book

Overview of this book

Although microservices-based applications support DevOps and continuous delivery, they can also add to the complexity of testing and observability. The implementation of a service mesh architecture, however, allows you to secure, manage, and scale your microservices more efficiently. With the help of practical examples, this book demonstrates how to install, configure, and deploy an efficient service mesh for microservices in a Kubernetes environment. You'll get started with a hands-on introduction to the concepts of cloud-native application management and service mesh architecture, before learning how to build your own Kubernetes environment. While exploring later chapters, you'll get to grips with the three major service mesh providers: Istio, Linkerd, and Consul. You'll be able to identify their specific functionalities, from traffic management, security, and certificate authority through to sidecar injections and observability. By the end of this book, you will have developed the skills you need to effectively manage modern microservices-based applications.
Table of Contents (31 chapters)
close
close
close
Preface
Icon
Preface
Icon
Who this book is for
Icon
What this book covers
Icon
Useful terms
Icon
To get the most out of this book
Icon
Get in touch
1
Section 1: Cloud-Native Application Management
Icon
Section 1: Cloud-Native Application Management
Lock Free Chapter
2
Monolithic Versus Microservices
Icon
Monolithic Versus Microservices
Icon
Early computer machines
Icon
Monolithic applications
Icon
Microservices applications
Icon
Summary
Icon
Questions
Icon
Further reading
3
Cloud-Native Applications
Icon
Cloud-Native Applications
Icon
An introduction to CNAs
Icon
Container runtime
Icon
Container orchestration platforms
Icon
Cloud-native infrastructure
Icon
Summary
Icon
Questions
Icon
Further reading
4
Section 2: Architecture
Icon
Section 2: Architecture
5
Service Mesh Architecture
Icon
Service Mesh Architecture
Icon
Service mesh overview
Icon
Shifting Dev responsibilities to Ops
Icon
Service mesh rules
Icon
Service mesh architecture
Icon
Summary
Icon
Questions
Icon
Further reading
6
Service Mesh Providers
Icon
Service Mesh Providers
Icon
Introducing service mesh providers
Icon
A quick comparison
Icon
Support services
Icon
Summary
Icon
Questions
Icon
Further reading
7
Service Mesh Interface and SPIFFE
Icon
Service Mesh Interface and SPIFFE
Icon
SMI
Icon
SPIFFE
Icon
Summary
Icon
Questions
Icon
Further reading
8
Section 3: Building a Kubernetes Environment
Icon
Section 3: Building a Kubernetes Environment
9
Building Your Own Kubernetes Environment
Icon
Building Your Own Kubernetes Environment
Icon
Technical requirements
Icon
Downloading your base VM
Icon
Performing prerequisite tasks
Icon
Building Kubernetes using one VM
Icon
Installing Helm and Tiller
Icon
Installing the Kubernetes dashboard
Icon
Additional steps
Icon
Summary
Icon
Questions
Icon
Further reading
10
Section 4: Learning about Istio through Examples
Icon
Section 4: Learning about Istio through Examples
11
Understanding the Istio Service Mesh
Icon
Understanding the Istio Service Mesh
Icon
Technical requirements
Icon
Introducing the Istio service mesh
Icon
Control plane
Icon
Data plane
Icon
Observability
Icon
Summary
Icon
Questions
Icon
Further reading
12
Installing a Demo Application
Icon
Installing a Demo Application
Icon
Technical requirements
Icon
Exploring Istio's BookInfo application
Icon
Understanding the BookInfo application
Icon
Summary
Icon
Questions
Icon
Further reading
13
Installing Istio
Icon
Installing Istio
Icon
Technical requirements
Icon
Getting ready
Icon
Performing pre-installation tasks
Icon
Installing Istio
Icon
Verifying our installation
Icon
Installing a load balancer
Icon
Enabling Istio
Icon
Setting up horizontal pod scaling
Icon
Summary
Icon
Questions
Icon
Further reading
14
Exploring Istio Traffic Management Capabilities
Icon
Exploring Istio Traffic Management Capabilities
Icon
Technical requirements
Icon
Traffic management
Icon
Traffic shifting
Icon
Fault injection
Icon
Circuit breaker
Icon
Managing traffic
Icon
Traffic mirroring
Icon
Cleaning up
Icon
Summary
Icon
Questions
Icon
Further reading
15
Exploring Istio Security Features
Icon
Exploring Istio Security Features
Icon
Technical requirements
Icon
Overview of Istio's security
Icon
Authentication
Icon
Authorization
Icon
Advanced capabilities
Icon
Summary
Icon
Questions
Icon
Further reading
16
Enabling Istio Policy Controls
chevron up
Icon
Enabling Istio Policy Controls
Icon
Technical requirements
Icon
Introduction to policy controls
Icon
Enabling rate limits
Icon
Controlling access to a service
Icon
Summary
Icon
Questions
Icon
Further reading
17
Exploring Istio Telemetry Features
Icon
Exploring Istio Telemetry Features
Icon
Technical requirements
Icon
Telemetry and observability
Icon
Configuring UI access
Icon
Collecting built-in metrics
Icon
Collecting new metrics
Icon
Database metrics
Icon
Distributed tracing
Icon
Exploring prometheus
Icon
Visualizing metrics through Grafana
Icon
Service mesh observability through Kiali
Icon
Tracing with Jaeger
Icon
Cleaning up
Icon
Summary
Icon
Questions
Icon
Further reading
18
Section 5: Learning about Linkerd through Examples
Icon
Section 5: Learning about Linkerd through Examples
19
Understanding the Linkerd Service Mesh
Icon
Understanding the Linkerd Service Mesh
Icon
Technical requirements
Icon
Introducing the Linkerd Service Mesh
Icon
Linkerd architecture
Icon
Linkerd proxy
Icon
Observability
Icon
Reliability
Icon
Security
Icon
Summary
Icon
Questions
Icon
Further reading
20
Installing Linkerd
Icon
Installing Linkerd
Icon
Technical requirements
Icon
Installing the Linkerd CLI
Icon
Installing Linkerd
Icon
Ingress gateway
Icon
Accessing the Linkerd dashboard
Icon
Deploying the Linkerd demo emoji app
Icon
Summary
Icon
Questions
Icon
Further reading
21
Exploring the Reliability Features of Linkerd
Icon
Exploring the Reliability Features of Linkerd
Icon
Technical requirements
Icon
Overview of the reliability of Linkerd
Icon
Summary
Icon
Questions
Icon
Further reading
22
Exploring the Security Features of Linkerd
Icon
Exploring the Security Features of Linkerd
Icon
Technical requirements
Icon
Setting up mTLS on Linkerd
Icon
Summary
Icon
Questions
Icon
Further reading
23
Exploring the Observability Features of Linkerd
Icon
Exploring the Observability Features of Linkerd
Icon
Technical requirements
Icon
Gaining insight into the service mesh
Icon
External Prometheus integration
Icon
Cleaning up
Icon
Summary
Icon
Questions
Icon
Further reading
24
Section 6: Learning about Consul through Examples
Icon
Section 6: Learning about Consul through Examples
25
Understanding the Consul Service Mesh
Icon
Understanding the Consul Service Mesh
Icon
Technical requirements
Icon
Introducing the Consul service mesh
Icon
The Consul architecture
Icon
Consul's control and data planes
Icon
Monitoring and visualization
Icon
Traffic management
Icon
Summary
Icon
Questions
Icon
Further reading
26
Installing Consul
Icon
Installing Consul
Icon
Technical requirements
Icon
Installing Consul in a VM
Icon
Installing Consul in Kubernetes
Icon
Summary
Icon
Questions
Icon
Further reading
27
Exploring the Service Discovery Features of Consul
Icon
Exploring the Service Discovery Features of Consul
Icon
Technical requirements
Icon
Installing a Consul demo application
Icon
Service discovery
Icon
Implementing mutual TLS
Icon
Exploring intentions
Icon
Exploring the Consul key-value store
Icon
Securing Consul services with ACL
Icon
Monitoring and metrics
Icon
Registering an external service
Icon
Summary
Icon
Questions
Icon
Further reading
28
Exploring Traffic Management in Consul
Icon
Exploring Traffic Management in Consul
Icon
Technical requirements
Icon
Overview of traffic management in Consul
Icon
Deploying a demo application
Icon
Traffic management in Consul
Icon
Mesh gateway
Icon
Summary
Icon
Questions
Icon
Further reading
29
Assessment
Icon
Assessment
Icon
Chapter 1: Monolithic versus Microservices
Icon
Chapter 2: Cloud-Native Applications
Icon
Chapter 3: Service Mesh Architecture
Icon
Chapter 4: Service Mesh Providers
Icon
Chapter 5: Service Mesh Interface and SPIFFE
Icon
Chapter 6: Building Your Own Kubernetes Environment
Icon
Chapter 7: Understanding the Istio Service Mesh
Icon
Chapter 8: Installing a Demo Application
Icon
Chapter 9: Installing Istio
Icon
Chapter 10: Exploring Istio Traffic Management Capabilities
Icon
Chapter 11: Exploring Istio Security Features
Icon
Chapter 12: Enabling Istio Policy Controls
Icon
Chapter 13: Exploring Istio Telemetry Features
Icon
Chapter 14: Understanding the Linkerd Service Mesh
Icon
Chapter 15: Installing Linkerd
Icon
Chapter 16: Exploring the Reliability Features of Linkerd
Icon
Chapter 17: Exploring the Security Features of Linkerd
Icon
Chapter 18: Exploring the Observability Features of Linkerd
Icon
Chapter 19: Understanding the Consul Service Mesh
Icon
Chapter 20: Installing Consul
Icon
Chapter 21: Exploring the Service Discovery Features of Consul
Icon
Chapter 22: Exploring Traffic Management in Consul
30
Other Books You May Enjoy
Icon
Other Books You May Enjoy
Icon
Leave a review - let other readers know what you think

Enabling Istio Policy Controls

In a traditional environment, a centralized proxy receives all traffic, and that traffic is routed to the services that do the actual work. As workloads grow, scalability issues can arise. However, Istio solves this and other similar problems with the use of a lean and thin proxy, which we will learn about in this chapter. We will discuss in detail the enablement of policies related to rate limits, service denials, and the enforcement of quotas without having to change any application source code.

By the end of this chapter, you will learn how to enable network-based policies for resource quotas and quota limits, as well as learning about how quota rules are assigned to a demo microservice. Besides this, we will set up a white/blacklist of services (based on IP) within the demo application for service denials.

In a nutshell, we will cover the following...

Visually different images
CONTINUE READING
83
Tech Concepts
36
Programming languages
73
Tech Tools
Icon Unlimited access to the largest independent learning library in tech of over 8,000 expert-authored tech books and videos.
Icon Innovative learning tools, including AI book assistants, code context explainers, and text-to-speech.
Icon 50+ new titles added per month and exclusive early access to books as they are being written.
Mastering Service Mesh
End of Section 16
Next Section
notes
bookmark Notes and Bookmarks search Search in title playlist Add to playlist download Download options
font-size Font size

Change the font size

margin-width Margin width

Change margin width

day-mode Day/Sepia/Night Modes

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY

Submit Your Feedback

Modal Close icon
Modal Close icon
Modal Close icon