Edit
Report

Kong Mesh

Modernized service mesh for development and governance
All Mesh Documentation

With Kong Mesh, you can run and manage a distributed service mesh across Kubernetes and VMs in any environment.

Benefits of Kong Mesh:

  • Built-in mTLS, service discovery, and traffic management.
  • Support for multi-zone and multi-mesh topologies.
  • Runs on both Kubernetes and Universal (VM) environments.
  • Enterprise features like access control and advanced observability.

You can manage your mesh deployments using the Kong Mesh GUI.

Mesh Diagram

Install Kong Mesh

You can use the following script to run an instance of Kong Mesh in Universal mode:

  1. Go to the Kong Mesh packages page to download and extract the installation archive for your OS, or download and extract the latest release automatically (Linux or macOS): 
    curl -L https://developer.konghq.com/mesh/installer.sh | VERSION=2.11.1 sh -
    Copied to clipboard!
  2. To finish installation, add Kong Mesh binaries to path: 
    export PATH=$(pwd)/kong-mesh-2.11.1/bin:$PATH
    Copied to clipboard!

    This directory contains binaries for kuma-dp, kuma-cp, kumactl, envoy, and coredns.

For detailed Kong Mesh quickstart guides in different deployment modes, see the get started section below.

Get started

Universal mode quickstart

Guide to deploying Kong Mesh in Universal mode using Docker containers. Walks through installing the Control Plane, adding demo services, enabling mTLS, and configuring gateways.

See the quickstart →

Kubernetes quickstart

Step-by-step guide to deploy Kong Mesh on Kubernetes using Helm and Minikube. Includes demo app setup, GUI exploration, and enabling mTLS for zero-trust security.

See the quickstart →

Learn

About service meshes

Overview of service mesh concepts and how Kong Mesh simplifies secure and reliable service-to-service communication using sidecar proxies and a Control Plane.

Learn more →

Kong Mesh concepts

Understand the core concepts of Kong Mesh, including the Control Plane, Data Plane proxies, inbounds and outbounds, and resources like policies.

Learn more →

Kong Mesh architecture

Understand the architecture of a Kong Mesh mesh, including Control and Data Plane components, Kubernetes and Universal modes, and how Services integrate into the mesh.

Learn more →

Use Kong Mesh

Access Kong Mesh via GUI, HTTP API, kubectl, or kumactl in Kubernetes or Universal environments. Understand available permissions and Control Plane ports.

Learn more →

Deployment modes

Multi-zone

Group equivalent MeshServices across zones and expose a unified, zone-agnostic service with global failover capabilities.

Learn more →

Single-zone

Run Kong Mesh in a single zone with a standalone Control Plane and interconnected Data Plane proxies.

Learn more →

Key references

Kong Mesh changelog

See new Kong Mesh features and bug fixes.

View the release notes →

Policy Hub

Kong Mesh policies are bundled features for your service traffic and network configuration.

See policies →

Enterprise features

Explore the features included with Kong Mesh Enterprise, including mTLS backends, RBAC, FIPS support, and signed container images.

See enterprise features →

Kong Mesh CLI

Reference for the CLI tools included in Kong Mesh, including usage examples and commands for kumactl, kuma-cp, and kuma-dp.

View the reference →

Kong Mesh requirements

See the different requirements to deploy Kong Mesh

View the requirements →

kuma-cp reference

Configuration reference for kuma-cp.

View the reference →

Security and access

Kong Mesh audit logs

Track all user and system actions in Kong Mesh using the AccessAudit resource and configurable backends.

View the reference →

Kong Mesh RBAC

Use AccessRole and AccessRoleBinding resources in Kong Mesh to implement fine-grained, role-based access to policies and actions.

View the reference →

Secure access across services

Learn how secure access is provided across a Kong Mesh deployment.

View the reference →

Support policies

Kong Mesh version support policy

The Kong Mesh version support policy outlines the Kong Mesh versioning scheme and version lifecycle, from release to sunset support.

View the version support policy →

Kong Mesh vulnerability patching process

Understand how Kong addresses and patches vulnerabilities in Kong Mesh binaries, third-party dependencies, and Docker images.

View the vulnerability support policy →

Kong Mesh software bill of materials

See the SBOM for Kong Mesh releases.

View the SBOM →

Did this doc help?

Something wrong?
Report an Issue | Edit this Page

Help us make these docs great!

Kong Developer docs are open source. If you find these useful and want to make them better, contribute today!
Contribute

Still need help

Ask in our Forum
Contact Support