Announcing Tetrate Agent Operations Director for GenAI Runtime Visibility and Governance

Learn more
< Back

Envoy Gateway 1.1 Feature Highlights

What’s New in Envoy Gateway 1.1 Want to chat with Erica about the new features in EG 1.1? Join our live webinar or watch on demand › What has really…

Envoy%20Gateway%201.1%20Feature%20Highlights

What’s New in Envoy Gateway 1.1

Want to chat with Erica about the new features in EG 1.1? Join our live webinar or watch on demand ›

What has really changed from Envoy Gateway 1.0 to Envoy Gateway 1.1? First and foremost Envoy Gateway now implements version 1.1 of the Kubernetes Gateway API. Secondly, it brings you even more of the power of Envoy Proxy, easily configurable through the Envoy Gateway custom resources in Kubernetes.

The new feature list is long, so to save you time reading and understanding the impact of all the new features we have created a summary of five areas which we believe will further enable you to handle Kubernetes’ ingress traffic effectively.

At Tetrate, we are impressed with the community’s ability to rally around common needs and continue to evolve the solution, unlocking even more of the power of Envoy Proxy. Additionally we are especially proud of the leadership and contributions of our Tetrands Arko, Huabing, Zirain and Shawn.

Tetrate offers an enterprise-ready, 100% upstream distribution of Istio, Tetrate Istio Subscription (TIS). TIS is the easiest way to get started with Istio for production use cases. TIS+, a hosted Day 2 operations solution for Istio, adds a global service registry, unified Istio metrics dashboard, and self-service troubleshooting.

Learn more

Get More Control over Traffic Handling with New Configuration Flexibility

Decisions are often highly contextual, and sometimes, the order in which we make those decisions matters. Do you authorize or rate-limit the request first? If you authorize first, does knowing the authorization context affect the rate-limiting decisions you are making? 

With Envoy Gateway 1.1, you gain a significant level of flexibility in defining and ordering filters, more features for backend and client traffic handling policies, and the ability to reuse backend traffic handling policies across gateway routes. This flexibility empowers you to tailor your traffic handling to your specific needs.

Enhance Security with Gradual mTLS Rollout

Want to move to mTLS for all client traffic coming in, but you have many clients and can’t turn it on for all of them in one go? With Envoy Gateway 1.1, you can now do a gradual rollout of mTLS allowing your clients to adopt it in their own time. This can be especially helpful when migrating off of Basic Authentication.

Envoy Gateway 1.1 introduces an incremental rollout of mTLS, allowing to gradually rollout mTLS for client-to-gateway TLS, ensuring a smooth transition, without outages, to a more secure environment.

Reduce Time to Resolution with Improved Observability

Observability is only as good as the data you collect, and you want to collect what matters, not just anything, and unnecessarily increase your log storage bill. You want to be able to answer questions about which team owns that really slow route and trace it through the system to find out where it is going.

With Grafana dashboard integration, Zipkin Support, and Route Metadata for traffic reports, you get enhanced observability, enabling better monitoring and quicker issue resolution.

Customize Traffic Handling with Your Own Code

Sometimes, you need to know more than the request attributes to make a routing decision. For example when you need to look up an end user’s geographic residence to route traffic to the correct region for handling (like the EU). To achieve this you might need to create a custom external process that integrates with your system to get that information and decorate the request to proceed with routing.

The EnvoyExtensionPolicy and ExtProc support allows you to extend Envoy programmability with external processes, enabling custom traffic handling and integration with unique business logic.

Integrate with Your Service Mesh More Easily

Previously, integrating Envoy Gateway with service meshes had limitations, particularly in routing to Service Cluster IP targets, which restricted flexibility and efficiency in service mesh environments.

Envoy Gateway 1.1 introduces enhanced service mesh integration by enabling routing to Service Cluster IP targets. This improvement allows seamless and efficient traffic routing within service meshes, leveraging the powerful features of Envoy Gateway to optimize performance and maintain robust communication between services.

Summary

Whether you are optimizing performance, enhancing security, gaining deeper insights, or pushing the boundaries of programmability, Envoy Gateway 1.1 provides the tools and features you need. Adopt or upgrade to Envoy Gateway 1.1 today and experience the future of Kubernetes ingress management.

Product background Product background for tablets
New to service mesh?

Get up to speed with free online courses at Tetrate Academy and quickly learn Istio and Envoy.

Learn more
Using Kubernetes?

Tetrate Enterprise Gateway for Envoy (TEG) is the easiest way to get started with Envoy Gateway for production use cases. Get the power of Envoy Proxy in an easy-to-consume package managed via the Kubernetes Gateway API.

Learn more
Getting started with Istio?

Tetrate Istio Subscription (TIS) is the most reliable path to production, providing a complete solution for running Istio and Envoy securely in mission-critical environments. It includes:

  • Tetrate Istio Distro – A 100% upstream distribution of Istio and Envoy.
  • Compliance-ready – FIPS-verified and FedRAMP-ready for high-security needs.
  • Enterprise-grade support – The ONLY enterprise support for 100% upstream Istio, ensuring no vendor lock-in.
  • Learn more
    Need global visibility for Istio?

    TIS+ is a hosted Day 2 operations solution for Istio designed to streamline workflows for platform and support teams. It offers:

  • A global service dashboard
  • Multi-cluster visibility
  • Service topology visualization
  • Workspace-based access control
  • Learn more
    Decorative CTA background pattern background background
    Tetrate logo in the CTA section Tetrate logo in the CTA section for mobile

    Ready to enhance your
    network

    with more
    intelligence?