Tetrate works with Amazon EKS and EKS Anywhere to bring seamless connectivity and management to Kubernetes applications both on-premises and in the cloud. One of Tetrate’s founding goals is to enable our customers to manage their applications everywhere––from edge to workload, between services and VMs, in datacenters and the cloud––and to do it securely, reliably, and scalably while providing a consistent experience to IT ops and developers across these environments.
That goal aligns perfectly with EKS Anywhere, Amazon’s new Kubernetes offering that reaches beyond AWS. Amazon Elastic Kubernetes Service (EKS) is a managed compute platform for containers that allows customers to avoid the undifferentiated heavy lifting involved in using roll-your-own Kubernetes to run modern applications on AWS. EKS Anywhere is a new deployment option for Amazon EKS that enables customers to easily create and operate Kubernetes clusters on-premises, including virtual machines (VMs) and bare metal servers. With EKS Anywhere, Amazon offers its customers a consistent Kubernetes experience both on-premises and in the cloud.
Tetrate is proud to be a launch partner with Amazon for EKS Anywhere. Tetrate works with Amazon to ensure seamless integration with EKS and EKS Anywhere. Our Tetrate Istio Subscription (TIS) product is designed to help customers manage Istio reliably and scalably in the cloud and on-premise in a consistent and painless way. TIS offers standard and FIPS-compliant builds of upstream Istio–vetted for use by EKS and EKS Anywhere customers–plus tooling to seamlessly manage the Istio lifecycle.
Our flagship product, Tetrate Service Bridge (TSB), further enhances simplicity, security, and robustness by providing enterprises with a unified management, policy, and observability experience for applications running across multi-cluster, hybrid, and multi-cloud environments. TIS and TSB also provide a simple and consistent experience for customers on application modernization and infrastructure migration journeys.
Below are some of the many topologies that customers might choose to implement:
Topology 1: TSB management plane and user clusters in the same VPC
This is a very simple architecture to implement. Within a VPC, clusters can talk directly to each other. The management plane and control plane can connect to the Elasticsearch domain created in the same VPC. Management plane can connect directly to RDS.
Management Plane and all Control Planes are in same VPC
Topology 2: TSB management plane and user clusters in different VPCs but in same AWS region
Management Plane and all Control Planes are in different VPC in same region
Topology 3: TSB management plane and user clusters in different VPCs spread across different AWS regions
Management Plane and all Control Planes are in different regions 
Topology 4: TSB management plane in Amazon EKS and all user clusters in EKS Anywhere on-premises
Management Plane in AWS EKS and all Control Planes in EKS-A in on-prem
EKS Anywhere and Tetrate are complementary solutions for consistent application management across a wide range of deployment environments. EKS Anywhere provides an installable software package for creating and operating Kubernetes clusters on-premises and automation tooling for cluster lifecycle support. Tetrate Service Bridge provides easy access and operability to enterprise-grade (upstream or FIPS-compliant) Istio and Envoy Proxy. It also provides multi-tenancy, traffic management, mesh and application-level observability, end-to-end mTLS (mutual Transport Layer Security), fine-grained authorization, and application security. Together with Amazon EKS and EKS Anywhere, Tetrate Service Bridge now provides a unified control plane and a consistent management experience from end-to-end. 
To try Tetrate Istio Subscription or Tetrate Service Bridge with Amazon ECS, ECS Anywhere, EKS, or EKS Anywhere, please request a free demo and trial ›
