Tigera, the creator of Project Calico, is introducing a variety of advancements to Calico to help organizations securely scale Kubernetes workloads with a single, unified platform.
According to the company, new capabilities include an integrated web application firewall (WAF) for Calico Ingress Gateway and policy recommendations for Calico Cloud Free Tier.
These latest enhancements to Calico enable organizations to implement consistent and adaptable security controls across distributed, multi-cluster Kubernetes environments without compromising operational speed.
Calico Ingress Gateway now includes built-in WAF capabilities that enable organizations to inspect, authorize, and secure ingress traffic during runtime.
The integrated WAF engine streamlines operations and reduces complexity by delivering consistent threat detection across both ingress points and internal services.
Additionally, Calico Cloud Free Tier can generate network policy recommendations for Kubernetes clusters. Calico analyzes the flow logs that are generated from workloads and automatically recommends staged policies for each namespace that can be used for isolation.
These new capabilities enable platform and security teams to implement effective network segmentation without extensive experience in authoring network policies and workload communication, the company said.
Calico also now supports centralized log forwarding for VM and bare metal hosts running outside of Kubernetes. With Calico, logs are collected at a central point, either at the management cluster or a standalone cluster that manages VM and bare metal hosts.
Furthermore, newly-improved iconography in Calico Service Graph also allows users to easily differentiate between Kubernetes cluster nodes and standalone VM and bare metal hosts that are running Calico outside of Kubernetes.
This enhanced iconography groups and displays the two types of nodes separately and allows teams to automatically filter and view flow logs associated with these connections.
"As organizations scale their Kubernetes environments, many struggle to ensure security due to the siloed, disparate solutions used for Kubernetes security," said Phil DiCorpo, senior director of product management at Tigera. "Calico’s new capabilities are a testament to our ongoing commitment to delivering a single, comprehensive platform that enables security across every aspect of the customer's Kubernetes journey.”
For more information about this news, visit https://www.tigera.io.