Alternatives to Cilium logo

Alternatives to Cilium

Weave, Istio, Envoy, linkerd, and OpenSSL are the most popular alternatives and competitors to Cilium.
34
79
+ 1
1

What is Cilium and what are its top alternatives?

Open source software for providing and transparently securing network connectivity and loadbalancing between application workloads such as application containers or processes.
Cilium is a tool in the Security category of a tech stack.
Cilium is an open source tool with 18.3K GitHub stars and 2.6K GitHub forks. Here’s a link to Cilium's open source repository on GitHub

Top Alternatives to Cilium

  • Weave
    Weave

    Weave can traverse firewalls and operate in partially connected networks. Traffic can be encrypted, allowing hosts to be connected across an untrusted network. With weave you can easily construct applications consisting of multiple containers, running anywhere. ...

  • Istio
    Istio

    Istio is an open platform for providing a uniform way to integrate microservices, manage traffic flow across microservices, enforce policies and aggregate telemetry data. Istio's control plane provides an abstraction layer over the underlying cluster management platform, such as Kubernetes, Mesos, etc. ...

  • Envoy
    Envoy

    Originally built at Lyft, Envoy is a high performance C++ distributed proxy designed for single services and applications, as well as a communication bus and “universal data plane” designed for large microservice “service mesh” architectures. ...

  • linkerd
    linkerd

    linkerd is an out-of-process network stack for microservices. It functions as a transparent RPC proxy, handling everything needed to make inter-service RPC safe and sane--including load-balancing, service discovery, instrumentation, and routing. ...

  • OpenSSL
    OpenSSL

    It is a robust, commercial-grade, and full-featured toolkit for the Transport Layer Security (TLS) and Secure Sockets Layer (SSL) protocols. It is also a general-purpose cryptography library. ...

  • Let's Encrypt
    Let's Encrypt

    It is a free, automated, and open certificate authority brought to you by the non-profit Internet Security Research Group (ISRG). ...

  • Ensighten
    Ensighten

    Ensighten is a comprehensive website security company, offering next generation compliance, enforcement and client-side protection against data loss, ad injection and intrusion. ...

  • Google reCaptcha
    Google reCaptcha

    It is a free service that protects your website from spam and abuse. It uses an advanced risk analysis engine and adaptive CAPTCHAs to keep automated software from engaging in abusive activities on your site. It does this while letting your valid users pass through with ease. ...

Cilium alternatives & related posts

Weave logo

Weave

51
72
7
Weave creates a virtual network that connects Docker containers deployed across multiple hosts.
51
72
+ 1
7
PROS OF WEAVE
  • 3
    Easy setup
  • 3
    Seamlessly with mesos/marathon
  • 1
    Seamless integration with application layer
CONS OF WEAVE
    Be the first to leave a con

    related Weave posts

    Istio logo

    Istio

    2.4K
    1.5K
    54
    Open platform to connect, manage, and secure microservices, by Google, IBM, and Lyft
    2.4K
    1.5K
    + 1
    54
    PROS OF ISTIO
    • 14
      Zero code for logging and monitoring
    • 9
      Service Mesh
    • 8
      Great flexibility
    • 5
      Resiliency
    • 5
      Powerful authorization mechanisms
    • 5
      Ingress controller
    • 4
      Easy integration with Kubernetes and Docker
    • 4
      Full Security
    CONS OF ISTIO
    • 16
      Performance

    related Istio posts

    Shared insights
    on
    IstioIstioDaprDapr

    At my company, we are trying to move away from a monolith into microservices led architecture. We are now stuck with a problem to establish a communication mechanism between microservices. Since, we are planning to use service meshes and something like Dapr/Istio, we are not sure on how to split services between the two. Service meshes offer Traffic Routing or Splitting whereas, Dapr can offer state management and service-service invocation. At the same time both of them provide mLTS, Metrics, Resiliency and tracing. How to choose who should offer what?

    See more
    Anas MOKDAD
    Shared insights
    on
    KongKongIstioIstio

    As for the new support of service mesh pattern by Kong, I wonder how does it compare to Istio?

    See more
    Envoy logo

    Envoy

    301
    535
    9
    C++ front/service proxy
    301
    535
    + 1
    9
    PROS OF ENVOY
    • 9
      GRPC-Web
    CONS OF ENVOY
      Be the first to leave a con

      related Envoy posts

      Joseph Irving
      DevOps Engineer at uSwitch · | 7 upvotes · 534K views
      Shared insights
      on
      KubernetesKubernetesEnvoyEnvoyGolangGolang
      at

      At uSwitch we wanted a way to load balance between our multiple Kubernetes clusters in AWS to give us added redundancy. We already had ingresses defined for all our applications so we wanted to build on top of that, instead of creating a new system that would require our various teams to change code/config etc.

      Envoy seemed to tick a lot of boxes:

      • Loadbalancing capabilities right out of the box: health checks, circuit breaking, retries etc.
      • Tracing and prometheus metrics support
      • Lightweight
      • Good community support

      This was all good but what really sold us was the api that supported dynamic configuration. This would allow us to dynamically configure envoy to route to ingresses and clusters as they were created or destroyed.

      To do this we built a tool called Yggdrasil using their Go sdk. Yggdrasil effectively just creates envoy configuration from Kubernetes ingress objects, so you point Yggdrasil at your kube clusters, it generates config from the ingresses and then envoy can loadbalance between your clusters for you. This is all done dynamically so as soon as new ingress is created the envoy nodes get updated with the new config. Importantly this all worked with what we already had, no need to create new config for every application, we just put this on top of it.

      See more
      Shared insights
      on
      EnvoyEnvoyHAProxyHAProxyTraefikTraefikNGINXNGINX

      We are looking to configure a load balancer with some admin UI. We are currently struggling to decide between NGINX, Traefik, HAProxy, and Envoy. We will use a load balancer in a containerized environment and the load balancer should flexible and easy to reload without changes in case containers are scaled up.

      See more
      linkerd logo

      linkerd

      132
      307
      7
      Twitter-Style Operability for Microservices
      132
      307
      + 1
      7
      PROS OF LINKERD
      • 3
        CNCF Project
      • 1
        Service Mesh
      • 1
        Fast Integration
      • 1
        Pre-check permissions
      • 1
        Light Weight
      CONS OF LINKERD
        Be the first to leave a con

        related linkerd posts

        OpenSSL logo

        OpenSSL

        13.1K
        6.8K
        0
        Full-featured toolkit for the Transport Layer Security and Secure Sockets Layer protocols
        13.1K
        6.8K
        + 1
        0
        PROS OF OPENSSL
          Be the first to leave a pro
          CONS OF OPENSSL
            Be the first to leave a con

            related OpenSSL posts

            Simon Reymann
            Senior Fullstack Developer at QUANTUSflow Software GmbH · | 30 upvotes · 8.9M views

            Our whole DevOps stack consists of the following tools:

            • GitHub (incl. GitHub Pages/Markdown for Documentation, GettingStarted and HowTo's) for collaborative review and code management tool
            • Respectively Git as revision control system
            • SourceTree as Git GUI
            • Visual Studio Code as IDE
            • CircleCI for continuous integration (automatize development process)
            • Prettier / TSLint / ESLint as code linter
            • SonarQube as quality gate
            • Docker as container management (incl. Docker Compose for multi-container application management)
            • VirtualBox for operating system simulation tests
            • Kubernetes as cluster management for docker containers
            • Heroku for deploying in test environments
            • nginx as web server (preferably used as facade server in production environment)
            • SSLMate (using OpenSSL) for certificate management
            • Amazon EC2 (incl. Amazon S3) for deploying in stage (production-like) and production environments
            • PostgreSQL as preferred database system
            • Redis as preferred in-memory database/store (great for caching)

            The main reason we have chosen Kubernetes over Docker Swarm is related to the following artifacts:

            • Key features: Easy and flexible installation, Clear dashboard, Great scaling operations, Monitoring is an integral part, Great load balancing concepts, Monitors the condition and ensures compensation in the event of failure.
            • Applications: An application can be deployed using a combination of pods, deployments, and services (or micro-services).
            • Functionality: Kubernetes as a complex installation and setup process, but it not as limited as Docker Swarm.
            • Monitoring: It supports multiple versions of logging and monitoring when the services are deployed within the cluster (Elasticsearch/Kibana (ELK), Heapster/Grafana, Sysdig cloud integration).
            • Scalability: All-in-one framework for distributed systems.
            • Other Benefits: Kubernetes is backed by the Cloud Native Computing Foundation (CNCF), huge community among container orchestration tools, it is an open source and modular tool that works with any OS.
            See more
            Let's Encrypt logo

            Let's Encrypt

            1.7K
            966
            98
            A free, automated, and open Certificate Authority (CA)
            1.7K
            966
            + 1
            98
            PROS OF LET'S ENCRYPT
            • 48
              Open Source SSL
            • 32
              Simple setup
            • 9
              Free
            • 9
              Microservices
            • 0
              Easy ssl certificates
            CONS OF LET'S ENCRYPT
              Be the first to leave a con

              related Let's Encrypt posts

              Ensighten logo

              Ensighten

              396
              13
              0
              Website Security & Privacy Compliance
              396
              13
              + 1
              0
              PROS OF ENSIGHTEN
                Be the first to leave a pro
                CONS OF ENSIGHTEN
                  Be the first to leave a con

                  related Ensighten posts

                  Google reCaptcha logo

                  Google reCaptcha

                  253
                  73
                  0
                  A free service that protects your website from spam and abuse
                  253
                  73
                  + 1
                  0
                  PROS OF GOOGLE RECAPTCHA
                    Be the first to leave a pro
                    CONS OF GOOGLE RECAPTCHA
                      Be the first to leave a con

                      related Google reCaptcha posts