In today’s interconnected and dynamic world of microservices, ensuring optimal traffic management and protection against malicious attacks are critical. Rate limiting, a popular mechanism for controlling request flow, gets more effortless with the introduction of Global Rate Limiting in Kong Mesh.
In this blog post, we’ll explore this exciting new feature and its benefits in detail.
Rate limiting is a mechanism that allows you to control the number of requests received by a service within a specific time frame. With Kong Mesh’s Global Rate Limiting, you now have the ability to apply rate limits across multiple service instances and coordinate request counting between them.
The benefits of Global Rate Limiting include:
Global Rate Limiting in Kong Mesh offers a range of powerful policy capabilities to give you granular control over your traffic management.
With header-based global rate limiting, you can set rate limits based on specific headers in the incoming requests, allowing for more flexible and targeted rate limiting strategies.
Additionally, you can extend rate limiting beyond your internal services and apply it to traffic directed towards external services, ensuring that these resources are protected from excessive requests regardless of their origin.
The Mesh Gateway also benefits from global rate limiting, allowing you to control and limit traffic entering the service mesh, providing an added layer of security and performance optimization. For enhanced performance, Kong Mesh enables you to combine both local and global rate limits, leveraging the strengths of each. By combining the two, you can achieve better resource utilization and improved response times, resulting in an overall optimized service mesh architecture.
In Kong Mesh, we value simplicity, and we wanted to make Global Rate Limiting effortless, especially when running on Kubernetes.
There is only one prerequisite: you need to have your own Redis deployment in place. One thing you need to do to start using Global Rate Limit is to deploy the ratelimit service. Most preferably using helm, which will configure it with proper security. We care about security, so communication between ratelimit service and Kong Mesh control plane is encrypted and protected with a token. Moreover, communication from Data Plane Proxy to ratelimit service can be encrypted.
After deploying ratelimit service, you need to configure ratelimit connection globally:
After this, you can start utilizing Global Rate Limit and set your first limits, like this:
If you want to learn more about Global Rate Limit internals, its algorithms, deployment strategies, and more. I encourage you to look at our documentation, which contains all of this information.
Global Rate Limiting in Kong Mesh brings powerful traffic management capabilities to your service mesh deployments. By leveraging the ratelimit service and an in-memory data store like Redis, you can efficiently control request flow, protect against DoS attacks, and manage API usage. Whether you have a single service or a complex microservices architecture, Global Rate Limiting empowers you with fine-grained control over your system’s performance and security.
Give Global Rate Limiting in Kong Mesh a try today and experience the benefits of robust rate limiting in your service mesh deployment!
We’re excited to announce the release of Kong Mesh and Kuma 2.2. This new minor release adds some long-awaited enterprise features, more incremental improvements to our UI and policies, and many more minor features and bug fixes. In order to take
What Is Terraform? Terraform is an infrastructure-as-code (IaC) tool developed by HashiCorp. It allows users to define and provision data center infrastructure using a declarative configuration language known as HashiCorp Configuration Language (HCL
We’re at it again, bringing more incremental improvements to Kong Mesh! Built on top of Kuma, Kong Mesh brings much-needed simplicity and production-grade tooling. Kong Mesh is built for smooth operations with platform teams in mind, providing secu
We’re excited to announce the upcoming release of Kong Mesh 2.9 in mid-September. This release comes with many improvements around security configurations, resiliency, and platform flexibility and we’re excited for everyone to get their hands on it.
Kong Mesh 2.7 is here! And with it come a slew of new features to make our simple and powerful enterprise service mesh even easier to use and more powerful for your particular needs. In this blog post, we'll cover the new features and show how Kong
The first release of Kong Mesh for 2024 (version 2.6) brings many new features that ease day 0 for new starters of service mesh reinforcing our goal of making a simple yet powerful product! In this blog, we'll break down these new features and provi
The latest release of Kong Mesh (version 2.5) brings many new features that push the envelope and make Kong Mesh the logical choice of a service mesh to meet your objectives. In this blog, we'll break down these new features and provide tailored us