A service mesh connects together the microservices that make up your applications. As such, your app design, container platform, and underlying infrastructure provider all impact the security posture of your apps.

App design and deployment

The following general practices can help you deploy your apps securely.

For example, you might use those guides to make sure that your app deployment includes the following capabilities.

Istio and Kubernetes reserved ports

For more information, see Reserved ports and pod requirements.

App traffic

Use Gloo Mesh networking and policy resources to secure the traffic that reaches your app and make your apps more resilient. The Gloo Mesh resources are automatically translated to the Istio resources that you need across your clusters.

These Gloo Mesh resources help you implement security features such as the following:

The following guides can help you set up secure traffic policies for the apps in your service mesh:

Logging and monitoring

Review the performance and health of your service mesh apps with the built-in logging and monitoring tools.

This data can help you monitor the health and performance of your apps, find bottlenecks, or troubleshoot issues. In particular, you might use this data to improve the following aspects of your app:

Finally, you can use the Gloo UI to review your service mesh environment, including resource status and metrics. For more information, see Gloo UI.