With new tools like Goldmane for real-time traffic insights, staged policies for safer security enforcement, and an ingress gateway, this upgrade helps organizations build more secure, scalable cloud-native environments.
Tigera has unveiled Calico Open Source 3.30, marking its most significant functionality upgrade to date. This latest release enhances observability, strengthens security, and expands support for managing ingress traffic in Kubernetes environments. With version 3.30, the company is bringing enterprise-grade security and observability tools from its commercial editions to open-source users.
It introduces several key enhancements that significantly improve observability, security, and ingress management in Kubernetes environments. One of the standout features is advanced observability with Goldmane, a gRPC-based API that streamlines access to flow logs and metrics. This provides DevOps teams with deeper visibility into service-to-service communications and workload-specific data, reducing troubleshooting time from days to minutes. Complementing this is Whisker, a web-based UI integrated with Goldmane, which allows users to filter flow logs, analyze metadata, and resolve connectivity issues more efficiently. These tools not only enhance network troubleshooting but also improve security monitoring and policy management by offering real-time insights into traffic behavior.
It has staged policies for simplified microsegmentation. Security policies are essential for safeguarding Kubernetes workloads, but enforcing them without prior testing can lead to disruptions. To address this, it introduces GlobalStagedNetworkPolicy and StagedNetworkPolicy, enabling developers to test and audit security policies before they are activated. These staged policies appear in flow logs and simulate real-world conditions, allowing organizations to validate their policies without impacting live environments.
Ingress management also sees a major upgrade with the introduction of the Calico Ingress Gateway, a robust, vendor-neutral implementation based on Envoy Gateway. This solution provides improved load balancing, failover strategies, and rate limiting, offering greater flexibility and control compared to traditional ingress controllers. The enhanced ingress capabilities ensure smoother and more reliable external communication with services running inside Kubernetes clusters.
It enables seamless integration with Calico Cloud, allowing users to effortlessly connect to the free forever edition of Calico Cloud. This integration provides read-only cluster access, advanced policy visualization, and automated recommendations for namespace isolation, making it easier for organizations to optimize their security posture and network management. These enhancements deliver features that improve Kubernetes networking, streamline security policy enforcement, and enhance overall observability, helping enterprises build more secure and scalable cloud-native environments.
“At Tigera, we’re committed to empowering the open-source community with tools to scale Kubernetes environments securely and efficiently,” said Phil DiCorpo, Senior Director of Product Management at Tigera. Upgrade to Calico OSS 3.30 today and take advantage of these security and observability features.
For more information,click here.
