Manage Envoy Proxy as a Standalone or Kubernetes-based API Gateway.
Gateway API are used to dynamically provision and configure the managed Envoy Proxies.
Expressive API
Based on Gateway API, with reasonable default settings to simplify the Envoy user experience, without knowing details of Envoy proxy.
Batteries included
Automatically Envoy infrastructure provisioning and management.
All environments
Support for heterogeneous environments. Initially, Kubernetes will receive the most focus.
Extensibility
Vendors will have the ability to provide value-added products built on the Envoy Gateway foundation.
Security
Supports a variety of Security features, such as TLS, TLS pass-through, secure gRPC, authentication. rate-limiting, etc.
High Performance
Built on top of the high-performance Envoy proxy, which can handle millions of requests per second.
Lower barriers to adoption through Expressive, Extensible, Role-oriented APIs
Support a multitude of ingress and L7/L4 traffic routing
Common foundation for vendors to build value-added products
Without having to re-engineer fundamental interactions.
Our Adopters
Routing all customer traffic to our various backends. Every time a new customer signs up we dynamically add a route to a new hostname so Envoy Gateway is deeply integrated with our product.
Tetrate provides Enterprise Gateway (TEG) to end users, which includes a 100% upstream distribution of Envoy Gateway, and management to deliver applications securely, authenticate user traffic, protect services with rate limiting and WAF, and integrate with your observability stack to monitor and observe activity.
Airspace Link is using Envoy Gateway to route all public APIs to Kubernetes clusters, developers are manipulating routes descriptions using agnostic manifest files, which are then automatically provisioned using Envoy Gateway.
Teleport is using Envoy Gateway to manage dynamic routing for all traffic to the Teleport Cloud Platform.
Tencent Cloud is using Envoy Gateway as a Kubernetes Cluster Network Addon to manage dynamic routing in the Tencent Kubernetes Engine.
QuantCo is using Envoy Gateway to expose various services from our K8s clusters in a secure and flexible way, where developers can deploy and manage their apps and cluster administrators can enforce common security policies like OIDC authentication.
Titan uses Envoy Gateway to enhance observability and centralize security for its Kubernetes services, managing critical policies like rate limiting, IP blocking, and access controls—freeing developers from the burden of handling service security.
Member of the Envoy Proxy family aimed at significantly decreasing the barrier to entry when using Envoy for API Gateway.