• The API Platform for AI.

      Explore More
      Platform Runtimes
      Kong Gateway
      • Kong Cloud Gateways
      • Kong Ingress Controller
      • Kong Operator
      • Kong Gateway Plugins
      Kong AI Gateway
      Kong Event Gateway
      Kong Mesh
      Platform Core Services
      • Gateway Manager
      • Mesh Manager
      • Service Catalog
      Platform Applications
      • Developer Portal
      • API and AI Analytics
      • API Products
      Development Tools
      Kong Insomnia
      • API Design
      • API Testing and Debugging
      Self-Hosted API Management
      Kong Gateway Enterprise
      Kong Open Source Projects
      • Kong Gateway OSS
      • Kuma
      • Kong Insomnia OSS
      • Kong Community
      Get Started
      • Sign Up for Kong Konnect
      • Documentation
    • Featured
      Open Banking SolutionsMobile Application API DevelopmentBuild a Developer PlatformAPI SecurityAPI GovernanceKafka Event StreamingAI GovernanceAPI Productization
      Industry
      Financial ServicesHealthcareHigher EducationInsuranceManufacturingRetailSoftware & TechnologyTransportation
      Use Case
      API Gateway for IstioBuild on KubernetesDecentralized Load BalancingMonolith to MicroservicesObservabilityPower OpenAI ApplicationsService Mesh ConnectivityZero Trust SecuritySee all Solutions
      Demo

      Learn how to innovate faster while maintaining the highest security standards and customer trust

      Register Now
  • Customers
    • Documentation
      Kong KonnectKong GatewayKong MeshKong AI GatewayKong InsomniaPlugin Hub
      Explore
      BlogLearning CentereBooksReportsDemosCase StudiesVideos
      Events
      API SummitWebinarsUser CallsWorkshopsMeetupsSee All Events
      For Developers
      Get StartedCommunityCertificationTraining
    • Company
      About UsWhy Kong?CareersPress RoomInvestorsContact Us
      Partner
      Kong Partner Program
      Security
      Trust and Compliance
      Support
      Enterprise Support PortalProfessional ServicesDocumentation
      Press Release

      Kong Expands with New Headquarters in Downtown San Francisco

      Read More
  • Pricing
  • Login
  • Get a Demo
  • Start for Free
Blog
  • Engineering
  • Enterprise
  • Learning Center
  • Kong News
  • Product Releases
    • API Gateway
    • Service Mesh
    • Insomnia
    • Kubernetes
    • API Security
    • AI Gateway
  • Home
  • Blog
  • Product Releases
  • What’s New in Kong Enterprise 3.2?
Product Releases
February 28, 2023
4 min read

What’s New in Kong Enterprise 3.2?

Tom Brightbill
Group Product Manager

We’re happy to announce the general availability of Kong Enterprise 3.2. In this release, we've taken significant steps to ensure the smooth and reliable operation of our API management solution.

In Kong Enterprise 3.2, we've delivered key functionality for customers that operate Kong Enterprise in a hybrid environment in order to further enhance its reliability. Specifically, we've expanded Kong Enterprise's capabilities in the following areas:

  • Dataplane scale out
  • FIPS 140-2 compliance to include all first-party Kong plugins, in addition to Kong core

Data Plane Scale Out When Control Plane is Unreachable Enterprise

In Kong Enterprise 3.2, we've addressed the issue of a potential disruption of service between control and data planes.

When customers running Kong Enterprise in a hybrid mode provision a data plane, it triggers a communication to the control plane to provide the latest configuration settings. This configuration is required by the data plane in order to start proxying traffic successfully. If, during the initial setup, the data plane is unable to contact the control plane and retrieve the latest configuration, the data plane is unable to start. This poses a challenging situation for customers especially if the communication between control and data plane is disrupted when traffic volume is high, which requires the data plane to scale out.

In 3.2, we addressed this issue for our customers. The solution involves a new type of data plane node called a "backup node" which writes the most current control plane configuration to either a GCP or AWS storage bucket.

This backup node receives configuration from the control plane and writes the configurations to the bucket specified by the customer. In the event of a control plane failure, a new data plane being provisioned can reach out to the specified bucket and retrieve the latest configuration data. The bucket connection specifics are configured via ENV variable on the data plane.

It's worth noting that we've taken special care to ensure that any Kong version differential between data planes is taken into consideration and that new/restarted data plane(s) only retrieve backed-up configuration that is compatible with the version of Kong Enterprise that they're running.

The specifics on how to configure this can be found in the documentation here.

The below diagram illustrates the advantages of this feature in the event that CP/DP communication is disrupted.

Figure 1: Dataplane scale out when the control plane is unreachable

Latency-Based Steering EnterpriseOSS

We're happy to announce that Kong Gateway 3.2 now supports latency-based steering.

Latency-based steering allows Kong load balancers to choose the "fastest" backend based on total response time when proxying to upstream services. Our latency-based steering implementation is based on the exponentially weighted moving average (EWMA), which ensures the balancer selects the upstream service based on the lowest average latency.

This algorithm is a good choice for services that receive a high volume of requests per second as it allows Kong to constantly rebalance the upstreams based on the most current response time data.

In this release, "latency" will be added as a load-balancing algorithm available during configuration (in addition to the existing round-robin, consistent-hashing, and least-connection algorithms).

Kong Manager Updates Enterprise

In Kong Enterprise 3.2, Kong Manager has added support for the following gateway features:

  • Key Entity: Key entities can now be created in Kong Manager. A Key object represents asymmetric keys in various formats. The Kong Gateway or a Kong plugin can use this entity when it requires a user-supplied public or private key for authentication via mTLs or other encryption operations.

    Figure 2: Create key entities in Kong Manager

Kong Manager also adds various UX enhancements that include:

  • License Report Export: In previous versions of Kong Enterprise, obtaining license usage reports was only available via an Admin API call. In 3.2, Kong Manager facilitates this by exposing the option to download the license report (or copy it to the clipboard) directly from the UI.

Figure 3: License usage report

  • Expression Router UX: In Kong Gateway 3.0, we shipped with a new router. The new router can describe routes using a domain-specific language called Expressions. In 3.2, Kong Manager enhances the user experience of building and validating expression-based routes. The "expression" field in the Route form now has full linting and autocomplete support for the expression syntax. Additionally, the Route form exposes a router playground that developers can use to test requests against expression-based routes they build.

Figure 4: Full linting and autocomplete support for the expression syntax

Figure 5: Test requests against expression-based routes

Additional Release Highlights

  • For users who want a single session maintained across all their apps using OIDC, Kong Enterprise 3.2 now supports global sessions for OIDC within our OIDC plugin.
  • Kong Gateway core and all associated first-party plugins are now FIPS 140-2 compliant. This builds on our momentum from the 3.1 release in which all "core" Kong components were made FIPS 140-2 compliant.
  • The Kong Debug header can now be flipped on/off via a flag.
  • Plugin instances now support an "instance_name" field in configuration. This helps disambiguate between multiple plugins of the same type.
  • We've added the following to our plugin documentation:
    • Updated the plugin compatibility information for more clarity on supported network protocols and on entity scopes.
    • Revised documentation and added examples for the plugins including CORS, File Log, HTTP Log, JWT Signer, Key Auth, OpenID Connect, Rate Limiting Advanced, SAML and StatsD.

Next Steps

For a full list of features, fixes, and updates, please see the available CHANGELOG for Kong Enterprise here and Kong Gateway OSS here.

Get started with Kong Gateway 3.2 in Kong Konnect for free!

If you are interested in Kong Enterprise 3.2 you can also download it for free here! If you have Kong Gateway installed already, upgrading to 3.2 is easy - check out our upgrade guide.

Topics:API Management
|
Kong Gateway Enterprise
Powering the API world

Increase developer productivity, security, and performance at scale with the unified platform for API management, service mesh, and ingress controller.

Sign up for Kong newsletter

Platform
Kong KonnectKong GatewayKong AI GatewayKong InsomniaDeveloper PortalGateway ManagerCloud GatewayGet a Demo
Explore More
Open Banking API SolutionsAPI Governance SolutionsIstio API Gateway IntegrationKubernetes API ManagementAPI Gateway: Build vs BuyKong vs PostmanKong vs MuleSoftKong vs Apigee
Documentation
Kong Konnect DocsKong Gateway DocsKong Mesh DocsKong AI GatewayKong Insomnia DocsKong Plugin Hub
Open Source
Kong GatewayKumaInsomniaKong Community
Company
About KongCustomersCareersPressEventsContactPricing
  • Terms•
  • Privacy•
  • Trust and Compliance
  • © Kong Inc. 2025