Web Server Load Balancing with NGINX Plus

By default all services in a Kubernetes environment can talk to one another. This might be acceptable if your apps don’t deal with sensitive information, but if the APIs published by your services expose personal information like passwords and credit card numbers, access by bad actors can quickly lead to embarrassing and expensive data breaches. To protect sensitive information, you can use NGINX Service Mesh to set up a zero‑trust environment with fine‑grained control over which services are authorized to communicate.

NGINX Service Mesh takes advantage of resources that the Service Mesh Interface (SMI) spec defines for implementing authorization, which it calls traffic access control. Building on these resources, it takes just a few minutes to define a traffic‑access policy in NGINX Service Mesh. In this demo, we walk through two sample policies with fine‑grained network and app‑level controls that prevent unauthorized actors from accessing specific app components.

To help you easily implement traffic‑access policies of your own, we also provide a step-by-step tutorial.

For a discussion of other traffic‑management patterns, read How to Improve Resilience in Kubernetes with Advanced Traffic Management on our blog.

Also check out these video demos of NGINX Service Mesh features:

Get Started with NGINX Service Mesh Today

NGINX Service Mesh is completely free and available for immediate download and can be deployed in less than 10 minutes! To get started, check out our docs and let us know how it goes via GitHub.

Hero image



Aidan Carson

Junior Software Developer


F5, Inc. 是备受欢迎的开源软件 NGINX 背后的商业公司。我们为现代应用的开发和交付提供一整套技术。我们的联合解决方案弥合了 NetOps 和 DevOps 之间的横沟,提供从代码到用户的多云应用服务。访问 了解更多相关信息。