2. # whoami
Hello
Laurent Grangeau - CSA@Sogeti
I love to automate things and run apps at scale
You can find me at @laurentgrangeau
Laurent Grangeau
@laurentgran
geau
Cloud Solution
Architect
6. Istio
Istio addresses many of the challenges faced by
developers and operators as monolithic applications
transition towards a distributed microservice
architecture
7. Concepts
Split into a dataplane and a controlplane
- The data plane is composed of a set of intelligent
proxies (Envoy) deployed as sidecars that mediate and
control all network communication between
microservices, along with a general-purpose policy and
telemetry hub (Mixer).
- The control plane is responsible for managing and
configuring proxies to route traffic, and configuring
Mixers to enforce policies and collect telemetry.
8. Core components
- Envoy
- Sidecar proxies per microservice to handle ingress/egress traffic between
services in the cluster and from a service to external services.
- Mixer
- Central component that is leveraged by the proxies and microservices to
enforce policies.
- Pilot
- A component responsible for configuring the proxies at runtime.
- Citadel
- A centralized component responsible for certificate issuance and rotation.
- Node agent
- A per-node component responsible for certificate issuance and rotation.
- Broker
- A component implementing the Open Service Broker API for Istio-based
services. (WIP)