Description
This Istio Administration training introduces managing service mesh environments using Istio on GKE. Participants will learn cluster setup, Istio installation, and observability for monitoring microservices.
The course covers traffic management techniques such as traffic shifting, fault injection, and circuit breaking, along with configuring ingress and egress gateways, securing communication, and managing DNS. By the end, participants will be able to optimize, secure, and maintain Istio-based microservices in production environments
Why Take This Course?
-
Master Service Mesh Management
Learn how to deploy, configure, and manage Istio on GKE to ensure reliable and efficient microservices.
-
Enhance Application Resilience
Gain expertise in traffic management techniques like traffic shifting, fault injection, and circuit breaking to keep applications robust under all conditions.
-
Optimize and Secure Cloud Microservices
Acquire practical skills to monitor, troubleshoot, and secure Istio-powered services for smooth production operations.
Facilities
- Hands-on Lab Environment – Train using dedicated virtual machines with full access to lab resources via Jumpserver (RDP & SSH), enabling real-world practice throughout the training.
- Downloadable Lab Environment – Continue practicing after the training with our VM Lab Downloader (.qcow2), allowing you to run the lab environment on your own machine.
- Complete Learning Materials – Get comprehensive digital training materials and a handbook with up to 1 year access, plus a certificate of course completion.
- Post-Training Support – Continue learning after the class with access to training records (for online sessions) and community discussion groups to help reinforce your skills.
Trainer
Syllabus
-
What is Service Mesh and Istio?
-
Sidecar or ambient?
-
Istio Concepts (Traffic Management, Security, Observability, Extensibility)
-
Architecture of Istio
-
Benefits of Istio as Load Balancer
-
Use Cases for Istio
-
Lab: Exploring the Lab Environment
-
Quiz 1
-
Google Kubernetes Engine (GKE)
-
Istio Deployment
-
Sidecar Injection
-
Diagnostic Tools for Istio
-
Lab: Provisioning GKE Cluster
-
Lab: Installing and Configuring Istio on GKE
-
Quiz 2
-
Observability with Istio (Prometheus, Grafana, Kiali)
-
Benefits of Observability
-
Lab: Deploying Example Application
-
Lab: Setting Up Prometheus
-
Lab: Visualizing Metrics with Grafana
-
Lab: Observing Service Mesh with Kiali
-
Quiz 3
-
Lab: Observing Service Mesh with Kiali
-
Introducing Istio Traffic Management
-
Virtual Services
-
Destination Rules
-
Gateways
-
Service Entries
-
Sidecars Empowering Service Mesh with Proxies
-
Lab: Enable Istio on Application
-
Lab: Configuring Traffic Routing to Application
-
Quiz 4
-
Request Timeouts Controlling Request Duration for Reliability
-
Fault Injection Simulating Failures for Resilience
-
Traffic Shifting Managing Traffic Distribution and Rollouts
-
Circuit Breaking Preventing Cascading Failures
-
Lab: Set up Request Timeouts in Envoy using Istio
-
Lab: Inject Faults to Test the Resiliency of Application
-
Lab: Migrate Traffic from an Old to New Version of a Service
-
Lab: Configure Circuit Breaking for Connections, Requests, and Outlier Detection
-
Quiz 5
-
Google Cloud Networking
-
VPC and Firewall Rules
-
Istio Ingress and Egress Gateway
-
Istio Ingress and Egress Gateway with GCP Load Balancer
-
Lab: Creating and Configuring Istio Ingress Gateway
-
Lab: Integrating Istio Ingress Gateway with GCP Load Balancer
-
Lab: Creating and Configuring Istio Egress Gateway
-
Lab: Integrating Istio Egress Gateway with GCP Load Balancer
-
Quiz 6
-
High-level Architecture
-
Identity and Certificate Management
-
Authentication Securing Service Identity
-
Mutual TLS (mTLS) Authentication
-
Authorization Controlling Access
-
Lab: Exploring Istio Keys and Certificates
-
Lab: Configuring Istio Authentication
-
Lab: Configuring Istio Authorization
-
Quiz 7
-
Cloud DNS in GCP
-
Understanding Istio and DNS Interactions
-
Quiz 8
-
Deployment Best Practices
-
Observability Best Practices
-
Traffic Management Best Practices
-
Security Best Practice
-
Quiz 9
-
Survey
-
Post-Test
Common Questions
Yes, the training can be conducted with a minimum of 4 participants. If the number of participants does not meet the minimum requirement, you may contact us for further information on the available options.
Yes, the training materials can be customized based on your needs. The topics are not limited to Cloud, CloudSecOps, and DevSecOps.
Available Training
Accelerate Your Professional Growth
Chat on WhatsApp
