Advance Concepts of Service Meshes - Hands On

Technologies Available

istio

Service security capabilities

Access Control

You will start by denying all traffic.

And then begin poking holes in your service mesh "firewall".

Create AuthorizationPolicy for each BookInfo service.

Allow per user access

Reset BookInfo Subsets (reset destination rules)

Identity Verification

Note: this lab uses the sample application HTTPbin.

Using Meshery, deploy the HTTPbin sample application.

Add Claims

Def

Mutual TLS

Using Meshery, you can change mTLS enforcement for a namespace.

To configure mTLS on more selective level, you can change and apply this configuration:

NEXT CHAPTER

Getting Started

Layer5, the cloud native management company

Layer5 is the steward of Meshery and creator of Kanvas, the collaborative canvas for cloud-native infrastructure. We bridge the gap between design and operation, allowing engineers to create, configure, and deploy orchestratable diagrams in real time. Whether managing Kubernetes or multi-cloud environments, Layer5 provides the tooling needed to oversee modern infrastructure with confidence.

RESOURCES

COMMUNITY

SOLUTIONS

COMPANY

2026 Copyright ©Layer5, Inc | All Rights Reserved