We’ve published many posts throughout 2024, with insightful content to help you adopt cloud-native technologies and master traffic management for your services. Whether you’re new to cloud-native or looking to refine your skills, this curated list of blog posts is the perfect starting point.
Here’s our recommended reading list to close out the year…
1. Which Data Plane Should You Use: Sidecar, Ambient, Cilium, or gRPC?
Link: https://tetrate.io/blog/ambient-vs-sidecar/
Why read this? You’ve probably heard about ambient mode (aka ambient mesh) for Istio and wondered if it’s the right move for your service mesh strategy. This post is for you. It cuts through the noise to explain the different service mesh modes—what’s different, what’s better, and what to watch out for.
2. Application Security with Sidecars, Sidecarless, and eBPF: New NIST Standard SP 800-233
Link: https://tetrate.io/blog/application-securty-nist/
Why read this? If you’re implementing a service mesh in compliance-driven environments, this post provides clarity on the new NIST guidelines and actionable insights for seamless adoption.
3. Lean but full of features: Leverage a Shared Gateway for Your Kubernetes Cluster
Why read this? Managing traffic into multiple namespaces in your Kubernetes cluster doesn’t have to be complicated. This post shows you how to leverage a shared Gateway with Envoy Gateway to simplify traffic management while still delivering powerful features. If you’re looking for a lean, efficient way to handle ingress, this post will give you the inspiration you need.
4. Maximum Throughput, Minimum Resources: Envoy Gateway + AWS Load Balancing
Link: https://tetrate.io/blog/envoy-gateway-with-aws-nlb/
Why read this? Learn how to use Envoy Gateway with AWS Network Load Balancer (NLB) to achieve robust traffic management for your Kubernetes applications. Learn step-by-step how to configure Envoy Gateway with AWS NLB for high availability and performance, simplifying the integration of these powerful tools for a seamless cloud-native experience.
5. Production Ready with Envoy Gateway
Link: https://tetrate.io/blog/get-ready-for-production-with-envoy-gateway/
Why read this? Thinking about using Envoy Gateway in production? This post is your go-to guide. It walks you through the essential steps to prepare Envoy Gateway for a production environment—covering everything from setup to best practices. If you want to ensure your deployment is secure, scalable, and reliable, this is the checklist you’ve been looking for.
6. Beyond Gateway API: Introducing Envoy Gateway’s Gateway API Extensions
Link: https://tetrate.io/blog/kubernetes-envoy-gateway-extensions/
Why read this? Wondering what makes Envoy Gateway different from other Kubernetes Gateway implementations? It’s all in the Gateway API extensions, giving you more of the power of Envoy, through simple configuration API. Read this blog post to learn more about the Gateway API extensions in Envoy Gateway.
Stay Updated in 2025 and Beyond
This list is just the beginning. Cloud-native is a constantly evolving space, and staying up to date with tools like Envoy and Istio, and NIST recommendations is key to staying ahead of the curve.
👉 Subscribe to our blog here to get the latest updates, technical deep dives, and best practices delivered straight to your inbox in 2025.
Let’s keep building scalable, secure, and cloud-native platforms together!
###
If you’re new to service mesh, Tetrate has a bunch of free online courses available at Tetrate Academy that will quickly get you up to speed with Istio and Envoy.
Are you using Kubernetes? Tetrate Enterprise Gateway for Envoy (TEG) is the easiest way to get started with Envoy Gateway for production use cases. Get the power of Envoy Proxy in an easy-to-consume package managed by the Kubernetes Gateway API. Learn more ›
Getting started with Istio? If you’re looking for the surest way to get to production with Istio, check out Tetrate Istio Subscription. Tetrate Istio Subscription has everything you need to run Istio and Envoy in highly regulated and mission-critical production environments. It includes Tetrate Istio Distro, a 100% upstream distribution of Istio and Envoy that is FIPS-verified and FedRAMP ready. For teams requiring open source Istio and Envoy without proprietary vendor dependencies, Tetrate offers the ONLY 100% upstream Istio enterprise support offering.
Need global visibility for Istio? TIS+ is a hosted Day 2 operations solution for Istio designed to simplify and enhance the workflows of platform and support teams. Key features include: a global service dashboard, multi-cluster visibility, service topology visualization, and workspace-based access control.
Get a Demo