II.
StackProfile overview
Reference · livestack-profile:service-mesh
Service Mesh (Istio, Kubernetes, Prometheus, Grafana, OpenTelemetry) overview
A service mesh architecture layered on top of Kubernetes using Istio for traffic management, mutual TLS, circuit breaking, and canary deployments. Prometheus collects mesh telemetry while Grafana renders service topology and latency dashboards. OpenTelemetry provides distributed tracing across all mesh-enrolled services. Linkerd serves as a lighter-weight alternative for teams that need simpler operational overhead. Targeted at platform teams running 20+ microservices that need zero-trust networking and fine-grained traffic control. The tradeoff is significant resource overhead from sidecar proxies and complex debugging of mesh-layer failures.
Attributes
displayName
Service Mesh (Istio, Kubernetes, Prometheus, Grafana, OpenTelemetry)
description
A service mesh architecture layered on top of Kubernetes using Istio for
traffic management, mutual TLS, circuit breaking, and canary deployments.
Prometheus collects mesh telemetry while Grafana renders service topology
and latency dashboards. OpenTelemetry provides distributed tracing across
all mesh-enrolled services. Linkerd serves as a lighter-weight alternative
for teams that need simpler operational overhead. Targeted at platform
teams running 20+ microservices that need zero-trust networking and
fine-grained traffic control. The tradeoff is significant resource overhead
from sidecar proxies and complex debugging of mesh-layer failures.
composes
Outgoing edges
applies_to2
- domain:platform-engineering·DomainPlatform Engineering
- domain:infrastructure·DomainInfrastructure
composed_of8
- tool:istio·ToolIstio
- tool:kubernetes·ToolKubernetes
- tool:prometheus·ToolPrometheus
- tool:grafana·ToolGrafana
- tool:opentelemetry·ToolOpenTelemetry
- tool:linkerd·ToolLinkerd
- tool:jaeger·ToolJaeger
- language:yaml·LanguageYAML
follows_workflow2
- workflow:service-mesh-traffic-shift·WorkflowService Mesh Traffic Shift
- workflow:canary-deployment·Workflow
requires_skill_area5
- skill-area:service-mesh-config·SkillAreaService Mesh Configuration
- skill-area:observability-instrumentation·SkillAreaObservability Instrumentation
- skill-area:distributed-tracing·SkillAreaDistributed Tracing
- skill-area:network-security·SkillAreaNetwork Security
- skill-area:containerization·SkillArea
used_by_role3
- role:platform-engineer·Role
- role:sre·Role
- role:security-engineer·RoleSecurity Engineer
Incoming edges
None.