Web Server Load Balancing with NGINX Plus

Lightweight, Turnkey, and Developer-Friendly

Take control of Kubernetes with NGINX Service Mesh, featuring a unified data plane for ingress and egress management in a single configuration.

Not Sure Whether You Need a Service Mesh?

Read the Blog

Why Use NGINX Service Mesh?

  • Uniquely
  • Flexible
  • Secure

Data Plane Matters

The real star of NGINX Service Mesh is the fully integrated, high-performance data plane. Leveraging the power of NGINX Plus to operate highly available and scalable containerized environments, our data plane brings a level of enterprise traffic management, performance, and scalability to the market that no other sidecars can offer. It provides the seamless and transparent load balancing, reverse proxy, traffic routing, identity, and encryption features needed for production-grade service mesh deployments. When paired with the NGINX Plus-based version of NGINX Ingress Controller, it provides a unified data plane that can be managed with a single configuration.

Flexible Traffic Handling and Portability

NGINX Service Mesh is platform‑agnostic and offers flexible traffic management. When deploying a new version of an application, you might want to limit the amount of traffic it receives at first, in case there is a bug. With our intelligent container traffic management, you can specify policies that limit traffic to new services and slowly increase it over time. Features like rate limiting and circuit breakers give you full control over the traffic flowing through your services. You can leverage a robust range of traffic distribution models, including:

  • Rate shaping, quality of service (QoS), service throttling
  • Blue-green deployments
  • Canary releases
  • Circuit breaker pattern
  • A/B testing
  • API gateway features

Authentication and Security at the Point of Service

Security is more critical now than ever. Data breaches can cost organizations millions of dollars every year in lost revenue and reputation. NGINX Service Mesh ensures all communication is mTLS‑encrypted so that there is no sensitive data on the wire for hackers to steal. Access controls enable you to define policies about which services can talk to each other. NGINX Service Mesh supports:

  • Service identity
  • Zero trust
  • mTLS enforcement
  • Certificate lifecycle management
  • Configuration gating and governance
  • Default block for ingress and egress north‑south traffic (requires NGINX Ingress Controller)
  • Allowlist support for ingress and egress
  • Edge firewalling with NGINX App Protect (requires NGINX Ingress Controller)
  • Per‑service access control for east‑west traffic

Deploy on Any Kubernetes Platform, Including:

  • Red Hat OpenShift
  • Amazon Elastic Container Service for Kubernetes (EKS)
  • Azure Kubernetes Service (AKS)
  • Google Kubernetes Engine (GKE)
  • IBM Private Cloud
  • Diamanti

Learn More about NGINX Service Mesh

Are You Service Mesh Ready? Moving from Consideration to Implementation

NGINX Webinars

Are You Service Mesh Ready? Moving from Consideration to Implementation

Service mesh adoption is growing rapidly, but adopting a mesh too soon – or selecting the wrong mesh! – can add complexity that hampers success.

How to Choose a Service Mesh


How to Choose a Service Mesh

NGINX Service Mesh is officially production-ready! NGINX Service Mesh is free, optimized for developers, and the lightest, easiest way to implement mTLS and end-to-end encryption in...

Advanced Kubernetes Deployment Strategies


Advanced Kubernetes Deployment Strategies

Unit 4 of Microservices March 2022 covers advanced techniques for keeping your apps and architecture up and running. Here are links to the resources you need: the livestream on March 28,...