Get Advice Icon

Need advice about which tool to choose?Ask the StackShare community!

Cilium
Cilium

9
20
+ 1
0
Weave
Weave

41
40
+ 1
7
Add tool

Cilium vs Weave: What are the differences?

Cilium: API-aware networking and security for containers. Open source software for providing and transparently securing network connectivity and loadbalancing between application workloads such as application containers or processes; Weave: Weave creates a virtual network that connects Docker containers deployed across multiple hosts. Weave can traverse firewalls and operate in partially connected networks. Traffic can be encrypted, allowing hosts to be connected across an untrusted network. With weave you can easily construct applications consisting of multiple containers, running anywhere.

Cilium can be classified as a tool in the "Security" category, while Weave is grouped under "Container Tools".

Some of the features offered by Cilium are:

  • Identity Based Security - Cilium visibility and security policies are based on the container orchestrator identity (e.g., Kubernetes labels). Never again worry about network subnets or container IP addresses when writing security policies, auditing, or troubleshooting.
  • Blazing Performance - BPF is the underlying Linux superpower to do the heavy lifting on the datapath by providing sandboxed programmability of the Linux kernel with incredible performance.
  • API-Protocol Visibility + Security - Traditional firewalls only see and filter packets based on network headers like IP address and ports. Cilium can do this as well, but also understands and filters the individual HTTP, gRPC, and Kafka requests that stitch microservices together.

On the other hand, Weave provides the following key features:

  • Virtual Ethernet Switch
  • Application isolation
  • Security

Weave is an open source tool with 5.57K GitHub stars and 517 GitHub forks. Here's a link to Weave's open source repository on GitHub.

- No public GitHub repository available -

What is Cilium?

Open source software for providing and transparently securing network connectivity and loadbalancing between application workloads such as application containers or processes.

What is Weave?

Weave can traverse firewalls and operate in partially connected networks. Traffic can be encrypted, allowing hosts to be connected across an untrusted network. With weave you can easily construct applications consisting of multiple containers, running anywhere.
Get Advice Icon

Need advice about which tool to choose?Ask the StackShare community!

Why do developers choose Cilium?
Why do developers choose Weave?
    Be the first to leave a pro
      Be the first to leave a con
        Be the first to leave a con
        What companies use Cilium?
        What companies use Weave?

        Sign up to get full access to all the companiesMake informed product decisions

        What tools integrate with Cilium?
        What tools integrate with Weave?

        Sign up to get full access to all the tool integrationsMake informed product decisions

        What are some alternatives to Cilium and Weave?
        Istio
        Istio is an open platform for providing a uniform way to integrate microservices, manage traffic flow across microservices, enforce policies and aggregate telemetry data. Istio's control plane provides an abstraction layer over the underlying cluster management platform, such as Kubernetes, Mesos, etc.
        Envoy
        Originally built at Lyft, Envoy is a high performance C++ distributed proxy designed for single services and applications, as well as a communication bus and “universal data plane” designed for large microservice “service mesh” architectures.
        linkerd
        linkerd is an out-of-process network stack for microservices. It functions as a transparent RPC proxy, handling everything needed to make inter-service RPC safe and sane--including load-balancing, service discovery, instrumentation, and routing.
        OpenSSL
        It is a robust, commercial-grade, and full-featured toolkit for the Transport Layer Security (TLS) and Secure Sockets Layer (SSL) protocols. It is also a general-purpose cryptography library.
        Let's Encrypt
        It is a free, automated, and open certificate authority brought to you by the non-profit Internet Security Research Group (ISRG).
        See all alternatives
        Decisions about Cilium and Weave
        No stack decisions found
        Interest over time
        Reviews of Cilium and Weave
        No reviews found
        How developers use Cilium and Weave
        No items found
        How much does Cilium cost?
        How much does Weave cost?
        Pricing unavailable
        Pricing unavailable
        News about Cilium
        More news