What Is Zero Trust? Architecture, Principles, and Technology
Learn about the zero trust security model, its key principles, how to build a zero trust architecture, and key technologies making zero trust possible| Tigera - Creator of Calico
Learn about the zero trust security model, its key principles, how to build a zero trust architecture, and key technologies making zero trust possible| Tigera - Creator of Calico
A Kubernetes service mesh is a dedicated infrastructure layer designed to manage, observe, and control communication between microservices within a Kubernetes cluster.| Tigera - Creator of Calico
Microsegmentation is a cybersecurity technique that divides a network into small, isolated segments, often called microsegments, to enhance security and control access. It's a more granular approach than traditional network segmentation and is often used to implement a zero-trust security model.| Tigera - Creator of Calico
Dive into the world of Kubernetes network security and learn how to protect your organization's valuable assets.| Tigera - Creator of Calico
November 10, 2025 Virtual | The Westin Peachtree Plaza Atlanta, Atlanta, GA CalicoCon 2025 Join us for an immersive event led by the Calico team, where you’ll gain education, training, and best practices of Kubernetes...| Tigera - Creator of Calico
Get ready, North America! The Calico team is thrilled to announce our participation in KubeCon + CloudNativeCon North America 2025, where we’ll be showcasing the latest advancements in Kubernetes networking, security, and observability. We’re excited...| Tigera - Creator of Calico
Learn how to deploy access control, encryption & auth at the application level| Tigera - Creator of Calico
Kubernetes Web Application Firewall (WAF) is a security measure aimed at safeguarding applications deployed on Kubernetes clusters from a variety of web-related threats.| Tigera - Creator of Calico
“We started in 2017 with Calico and never regretted it!” —Stefan Fudeus, Product Owner/Lead Architect, 1&1 Mail & Media Challenge 1&1 Mail & Media, part of the IONOS group, powers popular European internet brands including... The post How 1&1 Mail & Media Scaled Kubernetes Networking with eBPF and Calico appeared first on Tigera - Creator of Calico.| Tigera – Creator of Calico
Kubernetes networking is deceptively simple on the surface, until it breaks, silently leaks data, or opens the door to a full-cluster compromise. As modern workloads become more distributed and ephemeral, traditional logging and metrics just... The post Top 5 Kubernetes Network Issues You Can Catch Early with Calico Whisker appeared first on Tigera - Creator of Calico.| Tigera – Creator of Calico
Kubernetes has transformed how we deploy and manage applications. It gives us the ability to spin up a virtual data center in minutes, scaling infrastructure with ease. But with great power comes great complexities, and...| Tigera - Creator of Calico
Kubernetes Network Policies (KNP) are powerful resources that help secure and isolate workloads in a cluster. By defining what traffic is allowed to and from specific pods, KNPs provide the foundation for zero-trust networking and... The post Dry Run: Your Kubernetes network policies with Calico staged network policies appeared first on Tigera - Creator of Calico.| Tigera – Creator of Calico
Rolling out network policies in a live Kubernetes cluster can feel like swapping wings mid-flight—one typo or overly broad rule and critical traffic is grounded. Calico’s Staged Network Policies remove the turbulence by letting you...| Tigera - Creator of Calico
Why Calico Cloud Free Tier? As Kubernetes environments grow in scale and complexity, platform teams face increasing pressure to secure workloads without slowing down application delivery. But managing and enforcing network policies in Kubernetes is...| Tigera - Creator of Calico
The Kubernetes Gateway API intends to provide a modern interface for managing service networking in Kubernetes environments| Tigera - Creator of Calico
Learn about the Kubernetes networking model, common implementations, and key concepts like services, DNS, NAT, and dual stack.| Tigera - Creator of Calico
In Kubernetes, pods often need to securely communicate with external resources, such as internet services or APIs. Traditional Kubernetes network policies use IP addresses to identify these external resources. However, managing policies with IP addresses...| Tigera - Creator of Calico
Calico Enterprise lets users write network policies using domain names instead of IP addresses. This is done by dynamically mapping domain names to IP addresses and matching the egress traffic against these IPs. We have...| Tigera - Creator of Calico
If you’ve managed traffic in Kubernetes, you’ve likely navigated the world of Ingress controllers. For years, Ingress has been the standard way of getting our HTTP/S services exposed. But let’s be honest, it often felt...| Tigera - Creator of Calico
Calico Cluster Mesh streamlines cluster mesh operations with complete visibility, security, and networking through a centralized management plane.| Tigera - Creator of Calico
Multi-cluster Kubernetes refers to the management of multiple Kubernetes clusters, which are a group of nodes working together to orchestrate and run containerized applications.| Tigera - Creator of Calico
Kubernetes ingress is an API object that manages external access to services within a Kubernetes cluster, typically over HTTP and HTTPS.| Tigera - Creator of Calico
During your personalized 30-minute demo, you will learn how Calico: Implements high-availability networking; Simplifies security enforcement; Provides comprehensive protection for containers and Kubernetes| Tigera - Creator of Calico
Box is a content cloud that helps organizations securely manage their entire content lifecycle from anywhere in the world, powering over 67% of Fortune 500 businesses. As a cloud-first SaaS, the company provides customers with...| Tigera - Creator of Calico
This story is becoming more and more common in the Kubernetes world. What starts as a manageable cluster or two can quickly balloon into a sprawling, multi-cluster architecture spanning public clouds, private data centers, or...| Tigera - Creator of Calico
Networking is a particularly complex part of Kubernetes, therefore, Kubernetes network security can be especially challenging.| Tigera - Creator of Calico
If you’ve managed traffic in Kubernetes, you’ve likely navigated the world of Ingress controllers. For years, Ingress has been the standard way of getting HTTP/S services exposed. But let’s be honest, it often felt like... The post Is It Time to Migrate? A Practical Look at Kubernetes Ingress vs. Gateway API appeared first on Tigera - Creator of Calico.| Tigera – Creator of Calico
Today, organizations struggle managing disparate technologies for their Kubernetes networking and network security needs. Leveraging multiple technologies for networking and security for in-cluster, ingress, egress, and traffic across clusters creates challenges, including operational complexities and... The post Why we need a unified approach to Kubernetes environments appeared first on Tigera - Creator of Calico.| Tigera – Creator of Calico
Introducing Calico Cloud Free Tier Calico provides a unified platform for all your Kubernetes networking, network security, and observability requirements. From ingress/egress management and east-west policy enforcement to multi-cluster connectivity, Calico delivers comprehensive capabilities. It... The post What’s New in Calico: Spring 2025 appeared first on Tigera - Creator of Calico.| Tigera – Creator of Calico
When I got the assignment to attend KubeCon 1st of April I thought it was an April prank, but as the date got closer I realized—this is for real and I’ll be on the ground... The post Recap: KubeCon + CloudNativeCon Europe 2025 appeared first on Tigera - Creator of Calico.| Tigera – Creator of Calico
Kubernetes, by default, adopts a permissive networking model where all pods can freely communicate unless explicitly restricted using network policies. While this simplifies application deployment, it introduces significant security risks. Unrestricted network traffic allows workloads... The post How to get started with Calico Observability features appeared first on Tigera - Creator of Calico.| Tigera – Creator of Calico
Kubernetes is built on the foundation of APIs and abstraction, and Calico leverages its extensibility to deliver network security and observability in both its commercial and open source versions. APIs are the special sauce that... The post Calico Open Source 3.30: Exploring the Goldmane API for custom Kubernetes Network Observability appeared first on Tigera - Creator of Calico.| Tigera – Creator of Calico
With the upcoming release of Calico v3.30 on the horizon, we are excited to introduce Calico Whisker, a simple yet powerful User Interface (UI) designed to enhance network observability and policy debugging. If you’ve ever...| Tigera - Creator of Calico
When we first launched Project Calico in 2016, we set out to make Kubernetes networking easy, reliable, and scalable for all organizations. Our goal was to abstract away the complexity and performance overheads of other...| Tigera - Creator of Calico
Managing traffic in Kubernetes environments presents serious security and operational challenges. Traditional ingress solutions lack flexibility, rely on proprietary configurations, and offer limited traffic control, creating security gaps and inefficiencies. What’s needed is a more...| Tigera - Creator of Calico
As we kick off the new year, we’re excited to introduce the latest updates to Calico, designed to create a single, unified platform for all your Kubernetes networking, security, and observability needs. These new features...| Tigera - Creator of Calico
Concerns around Kubernetes security are mounting. Learn about Kubernetes security threats and tips for securing Kubernetes clusters.| Tigera - Creator of Calico
Learn about critical best practices that can improve your Kubernetes security policy design, including RBAC, application trust boundaries, and environment segmentation.| Tigera - Creator of Calico
Why is troubleshooting microservices challenging? Kubernetes provides abstraction and simplicity with a declarative model to program complex deployments. However, this abstraction and simplicity create complexity when debugging microservices in this abstract layer. The following four...| Tigera - Creator of Calico
A Kubernetes network policy is a specification that defines how pods are allowed to communicate with each other and other network endpoints in a Kubernetes cluster.| Tigera - Creator of Calico
Customers worldwide trust Tigera. Read their success stories to see how Calico addressed their container security and networking pain points.| Tigera - Creator of Calico
Today the Calico team merged a new dataplane option to Calico, based on eBPF, the Linux kernel’s embedded virtual machine. This exciting new dataplane will be included as a Tech Preview capability in the next...| Tigera - Creator of Calico
Learn how Calico enables a Kubernetes cluster mesh for security, observability, and networking in multi-cluster environments.| Tigera - Creator of Calico
Welcome to the Calico monthly roundup: July edition! From open source news to live events, we have exciting updates to share—let’s get into it! Exclusive: Cloud and container security leaders round table and dinner An...| Tigera - Creator of Calico
In the rapidly evolving landscape of IT infrastructure where workloads can be on-premises and in the public cloud, enterprises are increasingly moving away from traditional virtualization platforms. This is due to rising licensing costs and...| Tigera
Free and open source, Project Calico is designed to simplify, scale, and secure container and Kubernetes networks. Invented and maintained by Tigera.| Tigera
Learn how XDP enables fast traffic processing in eBPF, see use cases of XDP, and learn to write and load your first XDP program.| Tigera
As Kubernetes continues to gain traction in the cloud-native ecosystem, the need for robust, scalable, and highly available cluster deployments has become more noticeable. While a Kubernetes cluster can easily expand via additional nodes, the...| Tigera - Creator of Calico
Today, most organizations and individuals use Linux and the Linux kernel with a “one-size-fits-all” approach. This differs from how Linux was used in the past–for example, 20 years ago, many users would compile their kernel...| Tigera
Welcome to the Calico monthly roundup: June edition! From open source news to live events, we have exciting updates to share—let’s get into it! S&P Global 451 Market Insight: Tigera Provides Most Comprehensive CNAPP Learn...| Tigera
Kubernetes is used everywhere, from test environments to the most critical production foundations that we use daily, making it undoubtedly a de facto in cloud computing. While this is great news for everyone who works...| Tigera
Misconfigurations and container image vulnerabilities are major causes of Kubernetes threats and risks. According to Gartner, more than 90% of global organizations will be running containerized applications in production by 2027. This is a significant...| Tigera - Creator of Calico
Welcome to the Calico monthly roundup: May edition! From open source news to live events, we have exciting updates to share—let’s get into it! What’s new in Calico Discover the latest enhancements in Calico for...| Tigera
For DevOps and platform teams working with containers and Kubernetes, reducing downtime and improving security posture is crucial. A clear understanding of network topology, service interactions, and workload dependencies is required in cloud-native applications. This...| Tigera - Creator of Calico
23andMe is a popular genetics testing company, which was valued at $6B in 2021. Unfortunately, there was a massive data breach in December 2023, which caused a steep decline in the company’s value and trust,...| Tigera - Creator of Calico
Whether an enterprise is migrating its legacy application to a cloud-native architecture or deploying a new cloud-native application, it will face the challenge of integrating with security tools such as firewalls that rely on a...| Tigera
TL/DR A new Grafana dashboard that helps you monitor Calico Typha’s performance and troubleshoot issues. Calico eBPF dataplane IPv6 is now GA. It supports true IPv6-only clusters as well as dual-stack clusters. 🐝 Optional Pod...| Tigera
When setting up a Kubernetes environment with Amazon Elastic Kubernetes Service (EKS), it is crucial to understand your available networking options. EKS offers a range of networking choices that allow you to build a highly...| Tigera
Observability for cloud-native applications encompasses the methods and tools designed to track, analyze, and manage the internal state of cloud-native environments. It extends beyond traditional monitoring by not only collecting data but also offering insights...| Tigera
Microsegmentation represents a transformative approach to enhancing network security within Kubernetes environments. This technique divides networks into smaller, isolated segments, allowing for granular control over traffic flow and significantly bolstering security posture. At its core,...| Tigera
Last week we had the pleasure of attending KubeCon + CloudNativeCon EU in Paris, France. It was a fantastic event where we once again had the opportunity to engage in meaningful conversations about Kubernetes, container...| Tigera - Creator of Calico
Calico, the leading solution for container networking and security, unveils a host of new features this spring. From new security capabilities that simplify operations, enhanced visualization for faster troubleshooting, and major enhancements to its popular...| Tigera - Creator of Calico
Learn how extended Berkeley Packet Filter (eBPF) lets you run programs directly on the Linux kernel with huge benefits for security, networking, and observability.| Tigera - Creator of Calico
Comprehensive security visibility| Tigera - Creator of Calico
