Skip to main content

Envoy Gateway

Envoy Gateway is a Kubernetes inbound and outbound traffic management solution built on top of the Gateway API resources and the Envoy proxy server.

Envoy Gateway Tasks:

  • HTTP, HTTPS and TCP traffic routing;
  • load balancing;
  • termination of SSL and TLS connections;
  • Advanced traffic management - for example, support for canary and blue-green deployments.

In Managed Kubernetes Envoy Gateway is not pre-installed in the cluster, you must install it yourself.

Gateway API

Gateway API is a Kubernetes plugin with a set of API resources for L4 and L7 network traffic management, load balancing, routing, security policies and multiclustering.

Gateway API resources include:

  • GatewayClass;
  • Gateway;
  • HTTPRoute;
  • GRPCRoute.

Learn more about Gateway API resources in the Resource model subsection of the Gateway API instructions in the Kubernetes documentation.

Gateway API is a more modern alternative to Ingress API. Their main differences can be found in the Key Differences Between Ingress API and Gateway API subsection of the Migrating from Ingress instructions in the Gateway API documentation.

Install Envoy Gateway

  1. Connect to the cluster.

  2. Install the Helm package manager.

  3. Install Envoy Gateway:

    helm upgrade --install eg --create-namespace oci://docker.io/envoyproxy/gateway-helm --version v1.6.3 -n envoy-gateway-system

  4. Make sure that Envoy Gateway is installed:

    kubectl get pods

    Envoy Gateway information will appear in the response:

    NAME                              READY   STATUS    RESTARTS   AGE
    envoy-gateway-8545855df8-vjqtf    1/1     Running   0          35s