- Release Notes and Announcements
- Product Introduction
- Purchase Guide
- Getting Started
- Operation Guide
- FAQs
- Overview
- Permissions
- Pod Startup Fails Because the Envoy Sidecar Is Unready
- Envoy Status Code 431 "Request Header Fields Too Large" Is Returned
- Envoy Converts Headers to Lowercase
- Headless Service-related FAQs
- Istio-init Crashes
- VirtualService Does Not Take Effect
- Inappropriate VirtualService Route Matching Order
- Failed to Access an Ingress Gateway from the Public Network
- Parsing Fails After Smart DNS Is Enabled
- Locality Load Balancing Does Not Take Effect
- Client Status Code 426 "Upgrade Required" Is Returned
- Sidecars Are Not Automatically Injected
- Circuit Breaking Does Not Take Effect
- 404 Is Returned During Access to a StatefulSet's Pod IP Address
- Service Is Abnormal Due to a Retry Policy
- Incomplete Call Tracing Information
- TCM Policy
- Glossary
- Release Notes and Announcements
- Product Introduction
- Purchase Guide
- Getting Started
- Operation Guide
- FAQs
- Overview
- Permissions
- Pod Startup Fails Because the Envoy Sidecar Is Unready
- Envoy Status Code 431 "Request Header Fields Too Large" Is Returned
- Envoy Converts Headers to Lowercase
- Headless Service-related FAQs
- Istio-init Crashes
- VirtualService Does Not Take Effect
- Inappropriate VirtualService Route Matching Order
- Failed to Access an Ingress Gateway from the Public Network
- Parsing Fails After Smart DNS Is Enabled
- Locality Load Balancing Does Not Take Effect
- Client Status Code 426 "Upgrade Required" Is Returned
- Sidecars Are Not Automatically Injected
- Circuit Breaking Does Not Take Effect
- 404 Is Returned During Access to a StatefulSet's Pod IP Address
- Service Is Abnormal Due to a Retry Policy
- Incomplete Call Tracing Information
- TCM Policy
- Glossary
Overview
Tencent Cloud Mesh is a consistent, reliable, and transparent communication network management and control platform for cloud-native applications. It is fully compatible with Istio APIs. It is natively integrated with the Tencent Cloud infrastructure, and provides fully-managed service-oriented support capabilities, thereby easily guaranteeing and managing mesh lifecycles.
Being seamlessly connected to IaaS networking and integrated with monitoring components, Tencent Cloud Mesh is out of the box, which reduces operations costs. It flexibly accesses and manages applications across clusters, environments, and architectures to obtain consistent discovery, traffic, observation, and security management and control capabilities, thereby accelerating cloud-native transformation and migration of services. It has extended and enhanced high-level features such as data plane operations, ingress gateway, and configuration telemetry. In addition, it has been deeply optimized to provide better data plane forwarding performance, and comprehensively cover north-south and east-west communication connections of applications.
Core Concepts
Service mesh
A service mesh is logical isolation space that manages and controls communication networks between services, and provides a consistent and transparent service discovery, traffic, and full-link observation management environment. A same mesh can manage services from multiple Kubernetes clusters and even heterogeneous VMs. Services in the same mesh can communicate with each other by default.
Service
A service is a basic unit for a service mesh to manage traffic. One service can correspond to multiple endpoint instances. The corresponding relationship can come from automatic discovery of the service mesh on K8s services of Kubernetes clusters, or the corresponding relationship between endpoint instances and services can be manually registered.
Data plane
A data plane includes a gateway and a sidecar proxy. The gateway is deployed as an independent pod in a Kubernetes service discovery cluster of a mesh to control and observe north-south traffic. The sidecar proxy is deployed in a service pod or a service virtual machine to control and observe east-west traffic.
Control plane
A control plane manages and configures the data plane to route and forward traffic.
Istio CRD
A custom resource definition (CRD) is an extension of a default Kubernetes API. Tencent Cloud Mesh is compatible with Istio's Kubernetes CRD APIs and uses them to configure east-west and north-south service traffic control policies in a mesh.
Features
Pricing
Tencent Cloud Mesh is billed based on two dimensions, that is, the number of clusters and the number of online sidecars. For details, see Billing Overview.
Additional Services
Tencent Kubernetes Engine (TKE): Services managed by a service mesh come from TKE clusters through automatic service discovery.
Cloud Connect Network (CCN): When services managed by a service mesh come from different VPCs or regions, CCN is required to connect cross-VPC networks.
Cloud Load Balancer (CLB): An ingress gateway of a service mesh is integrated with CLB to realize fine-grained traffic management at the access layer of the service mesh.
Managed Service for Prometheus (TMP): Tencent Cloud Mesh supports connecting monitoring metrics to Prometheus instances managed by TMP, which automatically configures and collects mesh monitoring data and is preset with a Tencent Cloud Mesh Grafana dashboard.
Cloud Log Service (CLS): Tencent Cloud Mesh supports collecting access logs to CLS. The logs can be viewed and retrieved on the CLS console.
Yes
No
Was this page helpful?