Isovalent Cilium Enterprise

Hardened, enterprise-grade eBPF-powered networking, observability, and security.
Isovalent Cilium Enterprise

Enterprise-class eBPF-powered solution for your cloud native infrastructure

Compliance and forensics with eBPF-based security

With the power of eBPF, Isovalent Cilium Enterprise combines network and runtime behavior with Kubernetes identity to provide a single source of data for cloud native forensics, audit, compliance monitoring, and threat detection integrated into your SIEM/log aggregation platform of choice.

  • Identity-Aware Event SIEM Export
  • Network Flow Visibility
  • Workload Runtime Visibility
  • Compliance Monitoring
Learn more

Secure and scalable connectivity with eBPF-based networking

Isovalent Cilium Enterprise scales effortlessly for any deployment sizes, whether it is 50 pods or 100,000. With capabilities such as traffic management, load balancing, and infrastructure monitoring, Isovalent Cilium Enterprise is extensively tested, fully backported, and covered by 24x7 support from the builders of eBPF and Cilium.

  • Zero-Trust Network Policy
  • High-Performance Load Balancing
  • Multi-cluster Connectivity
  • Transparent Encryption
Learn more

App troubleshooting with 
eBPF-based observability

Isovalent Cilium Enterprise enables self-service for monitoring, troubleshooting, and security workflows in Kubernetes so teams can access current and historical views of flow data, metrics, and visualizations for their specific namespaces. This helps them if any network connectivity issues impact their app health.

  • Multi-tenant Connectivity Data + Metrics
  • Historical Data Views + Analytics
  • Simplified Network Policy Creation
  • Automated Network Policy Approvals
Learn more

Editions: Open source and Enterprise

Choose the product edition that suits your use case the best.



Schedule a demo
Advanced Networking & Routing (CNI)
  • Highly scalable IPv4 and IPv6 Kubernetes CNI
  • eBPF powered high performance datapath
  • Overlay, Direct, and Cloud Provider Routing Modes
  • High-performance L3/L4 Pod Load-balancing (kube-proxy replacement)
  • Advanced Bandwidth Management (Fair Queueing, TCP Optimization, Rate Limiting)
  • 3rd-party BGP integrations (MetalLB, BIRD, etc.)
  • SRv6
  • Native support for public cloud integration
Network Policy & Segmentation
  • Kubernetes Label, Services, CIDR
  • Identity-based enforcement
  • DNS-aware policies
    HA Capability
  • Automatic Policy Creation based on Network Traffic
  • Policy Management, Approvals, GitOps, CI/CD Guardrails
  • Advanced Policy Troubleshooting UI
  • Simplified Policy Creation Tools & APIs
  • Service Discovery & Global Services
  • Multi-Cluster Routing
  • Network Policy & Encryption
  • Global Visibility & Flow Export
  • Automated Cluster Management
  • Kubernetes services (kube-proxy replacement)
  • Advanced L3/L4 External Load-balancing (including XDP-acceleration, Direct Server Return, Maglev)
  • Topology-aware Routing
  • Network health-based routing & load-balancing
  • Transparent IPsec Encryption
  • Transparent Wireguard Encryption
  • Multi cluster automation
Non-Kubernetes Workloads & Endpoints
  • Traditional Firewall Integration / Static Egress Gateway
    HA Capability
  • VM & Metal Workload Support
  • Control plane automation
  • Additional hypervisor orchestration
  • Static Egress gateway
    HA Capability
  • Stand alone Load Balancer
  • OpenShift
  • AWS EKS (Chaining)
  • AWS EKS Anywhere
  • Azure AKS (BYOCNI)
  • Azure CNI Powered by Cilium Enterprise
  • Google Cloud GKE
  • Rancher (RKE2)
  • Mirantis Kubernetes Engine (MKE)
  • Kubermatic Kubernetes Platform (KKP)
  • ARM64 support
Security Behavior & Compliance Visibility
  • Identity-aware L3/L4/DNS Network Flow Logs
  • L7 (HTTP, gRPC, Kafka, memcached, ...)
  • TLS/SSL Handshake Analysis
  • Process/Syscall & Runtime Behavior
  • Combined Network & Runtime Visibility
  • Network Policy Events
Forensics, Audit, & Incident Investigation
  • SIEM Export (Splunk, ELK, ...)
  • Zero Trust Network Security
  • Real-time Runtime Enforcement
  • Automated Threat Mitigation
Compliance Monitoring
  • Identity-aware Tap/Mirror (IDS insertion)
  • Real time monitoring and analysis for FIPS/SOC compliance
Network & Service Observability
  • DNS Visibility
Global metrics and visibility across infrastructures
  • Application and Service Runtime health visibility
L7 Protocol Observability (HTTP, gRPC, Kafka, ...)
  • Proxy-based L7 Visibility
  • TLS-termination for L7 Visibility
  • eBPF-based high-performance parsers
Metrics & Tracing Export
  • Prometheus Export
  • OpenTelemetry
  • Multi-Tenancy / RBAC
  • Application Health and Performance monitoring via Golden Signals
Service & Tracing Map (Hubble UI)
  • Hubble Cluster-wide Flow Visibility CLI / API
  • Hubble Service Map + Flow Visibility UI
  • Troubleshooting Capabilities
  • Multi-Tenancy / RBAC
Historic Visibility (Timescape)
  • Historical Flow, Tracing and Analytics Data
  • Multi-Cluster
  • Multi-Tenancy / RBAC
Service Mesh Datapath
  • eBPF-based sidecar-free datapath
  • Native Envoy Integration
  • Upstream compliant Ingress Controller
  • Canary Rollouts
  • TLS Termination
  • SSL Passthrough (coming soon)
Traffic & Service Management
  • Multi-Cluster Routing
  • Circuit Breaking
  • Retries
  • Canary Rollouts
  • Rate Limiting
Control Plane Integrations
  • Native Kubernetes Integration
  • Envoy Configuration CRD
  • Gateway API
  • SMI (coming soon)
  • SPIFFE Support (coming soon)
Tracing & Metrics
  • Hubble Export
  • OpenTelemetry
  • Prometheus
  • TLS based mutual authentication
  • L7 Authorization
  • Enterprise-hardened Cilium Versions and Testing
  • 24x7 Enterprise Grade Support SLA
  • Proactive Support Environment Reviews
  • Cilium + Hubble Technical Training
  • Dedicated Solutions Architect
  • Directed Development / Custom Integrations