Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Build Observability, Reliability, and Security ...

Ananda Dwi Ae
June 06, 2023
Technology
0
27

Build Observability, Reliability, and Security Service Mesh using Istio on Amazon EKS

Ananda Dwi Ae

June 06, 2023
Tweet

More Decks by Ananda Dwi Ae

See All by Ananda Dwi Ae
Introduction to Kubernetes Gateway API
misskecupbung
0
10
Hands-On Lab: Modernizing Monolith to Microservices Applications on Google Cloud with Cloud Run
misskecupbung
0
6
Leveraging Microservices and Traditional DevOps for Next-Gen Operations (GenOps)
misskecupbung
0
8
KubeVirt Observability with Prometheus and Grafana
misskecupbung
0
170
Multi-Cluster Security with Network Firewall: Consistent Protection for Distributed EKS
misskecupbung
0
76
Cloud Surfing with GCP: A Beginner's Adventure
misskecupbung
0
51
Simplifying GKE Multi-Cluster for Disaster Recovery and Failover
misskecupbung
0
50
Secure, Reliable, and Observable Service Mesh on Microservices-based Architecture using Anthos Mesh
misskecupbung
0
32
Journey to Success: Building a Professional Career in Cloud Computing with Linux
misskecupbung
0
25

Other Decks in Technology

See All in Technology
【内製開発Summit 2025】イオンスマートテクノロジーの内製化組織の作り方/In-house-development-summit-AST
aeonpeople
2
1.2k
【Snowflake九州ユーザー会#2】BigQueryとSnowflakeを比較してそれぞれの良し悪しを掴む / BigQuery vs Snowflake: Pros & Cons
civitaspo
4
1.4k
EMConf JP 2025 懇親会LT / EMConf JP 2025 social gathering
sugamasao
2
210
「頑張る」を「楽しむ」に変換する技術
tomoyakitaura
1
290
遷移の高速化 ヤフートップの試行錯誤
narirou
6
2k
クラウド関連のインシデントケースを収集して見えてきたもの
lhazy
10
2k
エンジニアの健康管理術 / Engineer Health Management Techniques
y_sone
8
4.4k
x86-64 Assembly Essentials
latte72
4
630
マーケットプレイス版Oracle WebCenter Content For OCI
oracle4engineer
PRO
3
550
AI Agent時代なのでAWSのLLMs.txtが欲しい!
watany
3
390
手を動かしてレベルアップしよう!
maruto
0
260
CSPMとのつきあい方
nantokanare
0
110

Featured

See All Featured
Building a Scalable Design System with Sketch
lauravandoore
461
33k
We Have a Design System, Now What?
morganepeng
51
7.4k
Code Review Best Practice
trishagee
67
18k
The World Runs on Bad Software
bkeepers
PRO
67
11k
Principles of Awesome APIs and How to Build Them.
keavy
126
17k
Reflections from 52 weeks, 52 projects
jeffersonlam
348
20k
Designing Experiences People Love
moore
140
23k
Let's Do A Bunch of Simple Stuff to Make Websites Faster
chriscoyier
507
140k
YesSQL, Process and Tooling at Scale
rocio
172
14k
The Art of Delivering Value - GDevCon NA Keynote
reverentgeek
11
1.3k
I Don’t Have Time: Getting Over the Fear to Launch Your Podcast
jcasabona
32
2.2k
Automating Front-end Workflow
addyosmani
1369
200k

Transcript

  1. © 2023, Amazon Web Services, Inc. or its affiliates. All

    rights reserved.

  2. © 2023, Amazon Web Services, Inc. or its affiliates. All

    rights reserved. © 2023, Amazon Web Services, Inc. or its affiliates. All rights reserved. Observability, Reliability, and Security with Service Mesh: Istio on Amazon EKS Ananda Dwi Rahmawati (she/her) C O M 2 0 4 Sr. Cloud Engineer AWS Container Hero

  3. © 2023, Amazon Web Services, Inc. or its affiliates. All

    rights reserved. Gain greater observability and reliability, reduce complexity, and ensuring high availability and fault tolerance communication between containerized application with service mesh using Istio on Amazon EKS Key Takeaway

  4. © 2023, Amazon Web Services, Inc. or its affiliates. All

    rights reserved. Challenges in Microservices Service Mesh – What and Why? Istio on Amazon EKS Demo Today’s Agenda

  5. © 2023, Amazon Web Services, Inc. or its affiliates. All

    rights reserved. © 2023, Amazon Web Services, Inc. or its affiliates. All rights reserved. Challenges in Managing Microservices

  6. © 2023, Amazon Web Services, Inc. or its affiliates. All

    rights reserved. Challenges in Microservices • Interaction between services • Traffic management at each service endpoint • Communication security • Timeout and communication failures Service Service Service Service Service Service Service Services need to communicate with each other

  7. © 2023, Amazon Web Services, Inc. or its affiliates. All

    rights reserved. © 2023, Amazon Web Services, Inc. or its affiliates. All rights reserved. Service Mesh

  8. © 2023, Amazon Web Services, Inc. or its affiliates. All

    rights reserved. Service Mesh – What? Agnostic programmable framework that has policies and controls to govern how microservices interact App1 Proxy App2 Proxy Control Plane

  9. © 2023, Amazon Web Services, Inc. or its affiliates. All

    rights reserved. Service Mesh Behaviors • Traffic shaping with dynamic routing controls • Resiliency support for service communication • Observability of traffic • Tracing of communication flows • Secure communication

  10. © 2023, Amazon Web Services, Inc. or its affiliates. All

    rights reserved. Service Mesh Implementations Istio Linkerd Consul AWS App Mesh Workloads Kubernetes + VMs Kubernetes Kubernetes + VMs AWS Fargate, Amazon EC2, Amazon ECS, Amazon EKS, Kubernetes Supported Ingress Controller Istio Ingress Any Envoy AWS ALB Ingress Controller Traffic Management Feature Yes Yes Yes Yes Monitoring Grafana + Prometheus Grafana + Prometheus Grafana + Prometheus AWS X-Ray Multicluster Yes No Yes Yes Deployment Helm and Operator Helm Helm Helm Complexity High Low Medium Medium

  11. © 2023, Amazon Web Services, Inc. or its affiliates. All

    rights reserved. © 2023, Amazon Web Services, Inc. or its affiliates. All rights reserved. Istio

  12. © 2023, Amazon Web Services, Inc. or its affiliates. All

    rights reserved. Istio Istio will break down the complexity of distributed cloud native deployments Features: observability, traffic management, security

  13. © 2023, Amazon Web Services, Inc. or its affiliates. All

    rights reserved. Istio on Amazon EKS

  14. © 2023, Amazon Web Services, Inc. or its affiliates. All

    rights reserved. © 2023, Amazon Web Services, Inc. or its affiliates. All rights reserved. DEMO

  15. © 2023, Amazon Web Services, Inc. or its affiliates. All

    rights reserved. https://s.id/1FtQ7 Demo

  16. © 2023, Amazon Web Services, Inc. or its affiliates. All

    rights reserved. © 2023, Amazon Web Services, Inc. or its affiliates. All rights reserved. References

  17. © 2023, Amazon Web Services, Inc. or its affiliates. All

    rights reserved. References •https://aws.amazon.com/blogs/opensource/getting-started-istio-eks/ •https://github.com/aws-samples/istio-on-amazon-eks •https://istio.io/latest/docs/setup/install/helm/ •https://istio.io/latest/docs/examples/bookinfo/

  18. © 2023, Amazon Web Services, Inc. or its affiliates. All

    rights reserved. © 2023, Amazon Web Services, Inc. or its affiliates. All rights reserved. Your time is now Build in-demand cloud skills your way skillbuilder.aws

  19. © 2023, Amazon Web Services, Inc. or its affiliates. All

    rights reserved. © 2023, Amazon Web Services, Inc. or its affiliates. All rights reserved. Thank you for attending AWS Summit Online ASEAN 2023. Please complete the session survey to help us improve your Summit experience in the future. aws-asean-marketing@amazon.com twitter.com/AWSCloudSEAsia linkedin.com/company/amazon-web-services facebook.com/AmazonWebServices instagram.com/amazonwebservices youtube.com/user/AmazonWebServices twitch.tv/aws

  20. © 2023, Amazon Web Services, Inc. or its affiliates. All

    rights reserved. Thank you! © 2023, Amazon Web Services, Inc. or its affiliates. All rights reserved. Please complete the session survey in the mobile app Ananda Dwi Rahmawati @misskecupbung linkedin.com/in/anandadwir