What do you think?
Rate this book
Istio in Action
Solve difficult service-to-service communication challenges around security, observability, routing, and resilience with an Istio-based service mesh. Istio allows you to define these traffic policies as configuration and enforce them consistently without needing any service-code changes.
In Istio in Action you will
Why and when to use a service mesh
Envoy's role in Istio's service mesh
Allowing "North-South" traffic into a mesh
Fine-grained traffic routing
Make your services robust to network failures
Gain observability over your system with telemetry "golden signals"
How Istio makes your services secure by default
Integrate cloud-native applications with legacy workloads such as in VMs
Reduce the operational complexity of your microservices with an Istio-powered service mesh! Istio in Action shows you how to implement this powerful new architecture and move your application-networking concerns to a dedicated infrastructure layer. Non-functional concerns stay separate from your application, so your code is easier to understand, maintain, and adapt regardless of programming language. In this practical guide, you'll go hands-on with the full-featured Istio service mesh to manage microservices communication. Helpful diagrams, example configuration, and examples make it easy to understand how to control routing, secure container applications, and monitor network traffic.
Foreword by Eric Brewer.
About the technology
Offload complex microservice communication layer challenges to Istio! The industry-standard Istio service mesh radically simplifies security, routing, observability, and other service-to-service communication challenges. With Istio, you use a straightforward declarative configuration style to establish application-level network policies. By separating communication from business logic, your services are easier to write, maintain, and modify.
About the book
Istio in Action teaches you how to implement an Istio-based service mesh that can handle complex routing scenarios, traffic encryption, authorization, and other common network-related tasks. You'll start by defining a basic service mesh and exploring the data plane with Istio’s service proxy, Envoy. Then, you'll dive into core topics like traffic routing and visualization and service-to-service authentication, as you expand your service mesh to workloads on multiple clusters and legacy VMs.
What's inside
Comprehensive coverage of Istio resources
Practical examples to showcase service mesh capabilities
Implementation of multi-cluster service meshes
How to extend Istio with WebAssembly
Traffic routing and observability
VM integration into the mesh
About the reader
For developers, architects, and operations engineers.
About the author
Christian Posta is a well-known architect, speaker, and contributor. Rinor Maloku is an engineer at Solo.io working on application networking solutions.
ToC
PART 1 UNDERSTANDING ISTIO
1 Introducing the Istio service mesh
2 First steps with Istio
3 Istio's data The Envoy proxy
PART 2 SECURING, OBSERVING, AND CONTROLLING YOUR SERVICE’S NETWORK TRAFFIC
4 Istio Getting traffic into a cluster
5 Traffic Fine-grained traffic routing
6 Solving application networking challenges
In Istio in Action you will
Why and when to use a service mesh
Envoy's role in Istio's service mesh
Allowing "North-South" traffic into a mesh
Fine-grained traffic routing
Make your services robust to network failures
Gain observability over your system with telemetry "golden signals"
How Istio makes your services secure by default
Integrate cloud-native applications with legacy workloads such as in VMs
Reduce the operational complexity of your microservices with an Istio-powered service mesh! Istio in Action shows you how to implement this powerful new architecture and move your application-networking concerns to a dedicated infrastructure layer. Non-functional concerns stay separate from your application, so your code is easier to understand, maintain, and adapt regardless of programming language. In this practical guide, you'll go hands-on with the full-featured Istio service mesh to manage microservices communication. Helpful diagrams, example configuration, and examples make it easy to understand how to control routing, secure container applications, and monitor network traffic.
Foreword by Eric Brewer.
About the technology
Offload complex microservice communication layer challenges to Istio! The industry-standard Istio service mesh radically simplifies security, routing, observability, and other service-to-service communication challenges. With Istio, you use a straightforward declarative configuration style to establish application-level network policies. By separating communication from business logic, your services are easier to write, maintain, and modify.
About the book
Istio in Action teaches you how to implement an Istio-based service mesh that can handle complex routing scenarios, traffic encryption, authorization, and other common network-related tasks. You'll start by defining a basic service mesh and exploring the data plane with Istio’s service proxy, Envoy. Then, you'll dive into core topics like traffic routing and visualization and service-to-service authentication, as you expand your service mesh to workloads on multiple clusters and legacy VMs.
What's inside
Comprehensive coverage of Istio resources
Practical examples to showcase service mesh capabilities
Implementation of multi-cluster service meshes
How to extend Istio with WebAssembly
Traffic routing and observability
VM integration into the mesh
About the reader
For developers, architects, and operations engineers.
About the author
Christian Posta is a well-known architect, speaker, and contributor. Rinor Maloku is an engineer at Solo.io working on application networking solutions.
ToC
PART 1 UNDERSTANDING ISTIO
1 Introducing the Istio service mesh
2 First steps with Istio
3 Istio's data The Envoy proxy
PART 2 SECURING, OBSERVING, AND CONTROLLING YOUR SERVICE’S NETWORK TRAFFIC
4 Istio Getting traffic into a cluster
5 Traffic Fine-grained traffic routing
6 Solving application networking challenges
898 pages, Kindle Edition
Published May 3, 2022
33 people are currently reading
117 people want to read
Ratings & Reviews
Friends & Following
Create a free account to discover what your friends think of this book!
Community Reviews
Displaying 1 - 5 of 5 reviews
November 23, 2022
It took me a while to get through this book, but it doesn't mean it's bad.
1. its definition of service mesh and intro do what Istio is are probably the best ones I've ever seen in a book - no fluff, straight to the point
2. it's not focused on any particular cloud vendor - feel free to start reading regardless of where you want your services
3. I like the composition - it covered pretty much all the major concerns (from an architectural perspective) - in the correct order and depth
4. practical sections of the book (let's try the stuff out) unfortunately get quite boring and not very informative at some point ... you're pretty much asked to do kubectl apply w/o diving into how the parameterization is being done (what is the grammar, how is it structured, what's possible here)
5. three final chapters were far beyond what I needed or was able to validate - but it's good that the author wasn't afraid of non-trivial topics
6. what I really, really missed was a chapter (or even a few ...) about typical operational scenarios from the perspective of a service mesh operator - yeah, the book provides you the tools to figure this stuff out, yet, it'd be really comforting to see those
In the end, it's the best book on service meshes (in general) I've ever seen. Honestly recommended.
1. its definition of service mesh and intro do what Istio is are probably the best ones I've ever seen in a book - no fluff, straight to the point
2. it's not focused on any particular cloud vendor - feel free to start reading regardless of where you want your services
3. I like the composition - it covered pretty much all the major concerns (from an architectural perspective) - in the correct order and depth
4. practical sections of the book (let's try the stuff out) unfortunately get quite boring and not very informative at some point ... you're pretty much asked to do kubectl apply w/o diving into how the parameterization is being done (what is the grammar, how is it structured, what's possible here)
5. three final chapters were far beyond what I needed or was able to validate - but it's good that the author wasn't afraid of non-trivial topics
6. what I really, really missed was a chapter (or even a few ...) about typical operational scenarios from the perspective of a service mesh operator - yeah, the book provides you the tools to figure this stuff out, yet, it'd be really comforting to see those
In the end, it's the best book on service meshes (in general) I've ever seen. Honestly recommended.
Read
December 7, 2022Thrilling read, quite the page-turner.
September 27, 2023
What a read? Full of practical wisdom. Takes you from
Zero to Hero in Service Mesh. A little experience in using Mesh might really help you.
A fan of Christian Posta now. Beauty!!!
This book is going to be there on the shelf and sure to be referenced daily as long as you are adopting Istio Service Mesh in your org
Zero to Hero in Service Mesh. A little experience in using Mesh might really help you.
A fan of Christian Posta now. Beauty!!!
This book is going to be there on the shelf and sure to be referenced daily as long as you are adopting Istio Service Mesh in your org
December 28, 2022
I had a pleasant time going through this book. Examples are quite well setup (so far I only needed to troubleshoot once).
Since everything is based on Envoy, I wish that the book could spend more time introducing it at the beginning rather than reintroducing it again in later parts of the book. And instead of providing links, the author could have recommended what the readers should explore more.
The book doesn't really explain much about istioctl either. The explanation on the various subcommand is provided throughout the examples, but the command is not actively used like kubectl so that's kinda understandable.
Since everything is based on Envoy, I wish that the book could spend more time introducing it at the beginning rather than reintroducing it again in later parts of the book. And instead of providing links, the author could have recommended what the readers should explore more.
The book doesn't really explain much about istioctl either. The explanation on the various subcommand is provided throughout the examples, but the command is not actively used like kubectl so that's kinda understandable.
February 28, 2023
Good book with good insights on Istio.
Very complete.
Very complete.
Displaying 1 - 5 of 5 reviews