We're very excited to announce Kong Operator 2.0! Kong Operator is an evolution of Kong Ingress Controller (KIC) and Kong Gateway Operator into a single Kubernetes offering to simplify deployment, management, configuration, and upgrades of your Kong Gateway instances on Kubernetes.
When using the Kong Ingress Controller, a significant amount of effort was needed to apply configuration to the controller by setting environment variables. The new ControlPlane resource greatly simplifies this and allows you to set configuration once at the Control Plane level using native Kubernetes resources. For example, if you wanted to enable [Combine HTTP Routes](https://developer.konghq.com/kubernetes-ingress-controller/faq/combining-httproutes/)Combine HTTP Routes in KIC, you would need to set the environment variable:
ingressController:
enabled: true
installCRDs: true
env:
combined_services_from_different_httproutes: "true"
But in KO 2.0, this is set at the Controller level as a configuration in the Control Plane spec:
apiVersion: konnect.konghq.com/v2alpha1
kind: KonnectGatewayControlPlane
metadata:
name: gateway-control-plane
namespace: kong
spec:
name: gateway-control-plane
watchNamespaces:
type: list
list:
- default
- apps
translation:
combinedServicesFromDifferentHTTPRoutes: enabled
Having this configuration in one central CRD with other options like watchNamespaces greatly simplifies configuration, linting, and validation of your Kong Gateways.
A significant advantage for customers stems from Kong Operator's direct embedding of Kong Ingress Controller (KIC) instances within its own process. This architectural shift removes the requirement for the operator to request cluster-wide privileges each time a new KIC deployment is created. Previously, every ControlPlane reconciler needed permissions to create, update, or delete ClusterRoles, ClusterRoleBindings, and ServiceAccounts.
Now, KIC instances inherit their permissions from the service account linked to Kong Operator. This offers customers two key benefits:
As the Kubernetes ecosystem has evolved, so has Kong Operator. TCPIngress and UDPIngress custom resources are officially deprecated, and they've been removed in Kong Operator 2.0.
These resources were introduced to fill gaps in the early days of the Kubernetes Ingress API, providing much-needed flexibility for routing TCP and UDP traffic. But with the rise and broad adoption of the Gateway API, those gaps are now closed. The Gateway API delivers a richer, standardized way to configure networking across clusters, making TCPIngress and UDPIngress both redundant and a source of potential confusion.
By retiring these older resources, we’re streamlining the experience and encouraging customers to embrace the Gateway API as the modern, future-proof path forward. This means clearer configurations, stronger ecosystem alignment, and less fragmentation for everyone.
While this is a significant change for the better for our Kubernetes customers, we know there is more to do. When using Konnect and KIC, your Gateway is marked as Read Only. This is because the configuration control is in Kubernetes configuration. With [Kong Operator 2.1](https://konghq.com/blog/product-releases/kubernetes-experience-in-konnect)Kong Operator 2.1, we will be bringing support for the Kubernetes Gateway API to Konnect control planes. This unlocks the entire Kong API ecosystem to our customers, including Dev Portal, Service Catalog, and Debuggability, while giving you Gateway API support — the best of both worlds!
Mattia Lavacca and I will be talking about [building a first-class Kubernetes experience in Konnect](https://konghq.com/events/conferences/api-summit/agenda?agendaPath=session/1692800)building a first-class Kubernetes experience in Konnect at API Summit 2025. Don't have your tickets yet? [Register for API Summit now](https://konghq.com/events/conferences/api-summit?utm_medium=blog&utm_source=reason-2&utm_campaign=api-summit)Register for API Summit now!
With Kong Ingress Controller, when your Control Plane was hosted in Kong Konnect, and you were using Kubernetes Gateway API, your dataplane, routes, and services were in read-only mode. When using Kong Ingress Controller with Kubernetes Gateway API
[](https://konghq.com/blog/product-releases/kong-operator-2-1)
Kubernetes is an open-source container orchestration system for automating deployment, scaling, and management of containerized applications. It groups containers into logical units for easy management and discovery. API gateways sit between client
[](https://konghq.com/blog/engineering/how-to-manage-your-kubernetes-services-with-an-api-gateway)
Kubernetes, or K8s, is one of the most powerful open source container orchestration systems — especially for its automatic implementation of a desired state. In other words, as an admin, you get to specify how you want your application and cluster t
[](https://konghq.com/blog/learning-center/kubernetes-controllers-vs-operators)
Simplify operations and scale with confidence To unlock Kubernetes’ full potential, many enterprises are relying on three key building blocks available in Kong Konnect today: Kubernetes Ingress Controllers: Ingress controllers are used for managing
[](https://konghq.com/blog/product-releases/kubernetes-experience-in-konnect)
Kong Gateway Operator (KGO) is the most effective way to install, upgrade, scale, and manage a Kong Gateway or Kubernetes Ingress. The latest release of the Kong Gateway Operator brings several updates that streamline integration with Kong Konnect
[](https://konghq.com/blog/product-releases/kong-gateway-operator-1-5)
Happy holidays everyone! We've been working hard on the Kong Ingress Controller (KIC) and the latest 3.4 release is jam-packed with new features, bugfixes, and improvements. With this update, we're introducing easier TLS encryption, enhanced perfor
[](https://konghq.com/blog/product-releases/kong-ingress-controller-3-4)
Kong Ingress Controller 3.1 provides brand-new capabilities for keeping your secrets secure. We’ve introduced new KongVault and KongLicense CRDs, and added a way to keep sensitive information in your cluster when using KIC in Konnect. Finally, t
[](https://konghq.com/blog/product-releases/kic-3-1)