AWS App Mesh
Managed service mesh that simplifies monitoring and controlling inter-service communication in microservices
Open-Source Projects
Discover top open-source software, updated regularly with real-world adoption signals.
Discover top open-source software, updated regularly with real-world adoption signals.
Universal Envoy-based service mesh for Kubernetes, VMs, and multi-zone
Kuma delivers a turnkey, Envoy-powered service mesh that runs on Kubernetes, VMs, and bare metal, supporting single- and multi-zone deployments with built-in policies for security, traffic control, and observability.
Kuma is an Envoy-powered service mesh designed for organizations that operate both modern containerized workloads and traditional services on VMs or bare metal. It delivers turnkey L4-L7 connectivity, automatic mTLS, traffic routing, fault injection, and full observability without requiring developers to embed mesh logic in their code. Built by the Envoy contributors at Kong, Kuma supports single-zone as well as multi-zone and multi-cluster topologies, enabling seamless communication across clouds, data centers, and hybrid environments.
The universal control plane can be installed on Kubernetes clusters, virtual machines, or bare-metal servers, and it automatically injects Envoy sidecars where needed. Multi-mesh isolation and policy synchronization are handled out of the box, while the kumactl CLI and browser GUI simplify management. Kuma’s CRD-based configuration on Kubernetes and RESTful API for other runtimes allow integration with existing CI/CD pipelines, making it suitable for greenfield projects and legacy migrations alike.
When teams consider Kuma, these hosted platforms usually appear on the same shortlist.
Managed service mesh that simplifies monitoring and controlling inter-service communication in microservices
Fully managed service mesh on Google Cloud for traffic management and observability
Enterprise service mesh management platform extending Istio across multi-cloud environments
Looking for a hosted option? These are the services engineering teams benchmark against before choosing open source.
PCI-compliant regional routing
Ensures traffic from Swiss services stays within Switzerland, meeting compliance requirements.
Blue/green deployments
Dynamic load-balancing enables safe version rollouts and quick rollbacks.
Hybrid cloud connectivity
Links services across on-prem VMs and cloud Kubernetes clusters with seamless mesh communication.
Zero-trust security
Automatic mTLS encrypts all service-to-service communication, providing end-to-end security.
Kuma runs on Kubernetes, virtual machines, bare metal and hybrid environments.
It provides built-in discovery and automatic Envoy bootstrapping for both container and VM workloads.
Yes, Kuma includes a browser-based GUI for exploring meshes and policies.
Kuma follows a 10-week minor release cycle.
Enterprise support and additional features are offered through Kuma’s commercial offerings.
Project at a glance
ActiveLast synced 4 days ago