eBPF-based unified cloud-native solutions
Networking
High Performance Networking (CNI)
Enabling network operators to abstract and manage the cloud native network, including on-prem integration with BGP and overlay networking compatible with Cloud SDNs.
Scalable Load Balancing and Ingress
Cilium brings a kube-proxy replacement for enhanced traffic management, enabling maglev-supported load balancing on L3/L4 for N/S traffic, but also E/W, including DSR and transparent k8s ingress controllers.
Multi-cluster Service Discovery
Seamlessly connect your kubernetes clusters together with Cluster Mesh while enabling cross-cluster service discovery.
On-prem Integration
Integrate external workloads with your data center and connect cloud native with legacy environments while supporting BGP.
Bandwidth and Latency Optimization
Optimize your bandwidth and latency with rate limiting and fair queuing. Rely on our TCP congestion control algorithm automization.
Multi cloud and Hybrid cloud
Cilium is designed to enable portability across multi-cloud and hybrid clouds and provide developers with observability and security.
Gateway API
Gateway API is the future of Kubernetes Ingress networking. The Cilium Gateway API supports use cases such as HTTP routing, traffic splitting/weighting, header modification, and TLS termination.
IPv6
Cilium is not only IPv6 ready; it is the unique cloud native platform to support innovative features such as BIG TCP and Segment Routing v6 (SRv6).
Advanced Network Analytics
Enabling a global view from workloads to the clusters running underneath them via real-time and advanced network analytics. Support troubleshooting with key metrics up to the protocol and error code level.
Security
Zero Trust Security
API- and DNS-aware advanced network policy enforcement, providing micro-segmentation at scale without compromising performance.
Transparent Encryption
Traffic encryption without changing your existing applications or deploying a service mesh.
Runtime Protection
Prevent unauthorized access to your traffic at runtime to stop attacks on OS level, preventing malicious actions.
SIEM Integration
Include your kubernetes clusters in your threat investigation by exporting event, flow, metric to any SIEM or observability tool.
FIPS and SOC Compliance
Real-time monitoring and analysis of workload communication for continued FIPS/SOC compliance.
Advanced Network Policy
Enabling network policies based on cloud native identities and DNS-aware data, segmenting tenants or workloads to prevent unauthorized or unwanted access to services.
Static Egress Gateway
Present a group of cloud native workloads from a stable IP address to integrate with traditional firewalls.
Forensics
Enable self-service access to app teams to quicken app level issue investigation while providing network flow visibility and enabling network threat detection.
Observability
Application Monitoring
Self-service metrics access to app teams enabled by RBAC-based monitoring. Monitor http error codes without changing the app or impacting the cluster.
Sidecar-free Tracing
Gain critical insight into network events together with app level telemetry by forwarding flows to OpenTelemetry sidecar-free. Access distributed tracing, metrics, and logs, without the complexity and performance impact of sidecar-based approaches.
Service Map
Enable platform teams to provide self-service portal to app teams to observe their own workloads, dependencies, and flows to identify the services connecting to other services and the service calls being made.
Golden Signals
Cilium's observability gives application teams a holistic view of their Kubernetes workloads, enabling them to monitor their golden signals to adhere to their SLAs and OKRs.
Global Metrics & Visibility
Gain visibility across clouds, clusters and premises - independent on the underlying infrastructure.
Role Based Access Control
Role Based Access Control (RBAC), powered by OpenID Connect, in Cilium and Hubble offers app teams a multi-tenant self-service access to the connectivity data associated with their kubernetes workloads.
Advanced Network Protocol Visibility
Get deep insight into protocols, enforce protocol aware security policies level based on your findings. Secure TLS, gRPC, Kafka, DNS and HTTP including all the API endpoints exposed with them.
Runtime Visibility
Enable app teams with access to rich data streams, thereby providing network flow visibility and the health of service connectivity and enabling app layer issue investigation.
Hubble Timescape
Hubble Timescape, an observability and analytics platform to store & query observability data that Cilium and Hubble collect.
What our customers say
Cilium is a critical part of the Datadog network stack as it provides consistent Kubernetes networking across cloud providers as well as performant and secure communications, thanks to eBPF.
Ready to get started?
Request a demo
Request a personalized live demo with an Isovalent Cilium Enterprise expert.
Request a demoContact sales
Engage with the Isovalent sales team to assess an enterprise-grade deployment of Cilium.
Contact sales