Call a Specialist Today! 800-886-5369
Isovalent Enterprise Platform
An eBPF-powered networking, security, and observability layer for Kubernetes, virtual machines, and physical servers — delivering cloud-native connectivity and runtime protection across any infrastructure.
Universal networking that spans Kubernetes clusters, VMs, and physical servers across any cloud or on-premises environment. eBPF-based data plane processing delivers wire-speed performance with zero-trust micro-segmentation and end-to-end encryption built in.
Runtime security powered by Tetragon provides kernel-level visibility into process execution, file access, and network activity. Automated compliance auditing, real-time threat detection, and forensic-grade event recording meet the demands of regulated industries.
Deep, context-aware visibility into application traffic flows, DNS queries, HTTP transactions, and Kubernetes service maps — without sidecars or application instrumentation. Identify latency bottlenecks, failed connections, and policy violations in real time.
High-performance CNI with native support for multi-cluster connectivity, IPv4/IPv6 dual-stack, BGP peering, and transparent encryption between nodes and clusters.
Kernel-level enforcement powered by Tetragon for process execution control, file integrity monitoring, network policy enforcement, and automated forensic event capture.
Scalable L3/L4 load balancing and ingress with XDP acceleration, DSR support, and Maglev-consistent hashing — replacing kube-proxy with dramatically lower latency.
Sidecar-free service mesh with mTLS, traffic management, and L7 observability. Extends connectivity beyond Kubernetes to VMs and external services without added complexity.
Replace legacy CNI plugins with an eBPF-native networking layer that eliminates iptables overhead, delivers wire-speed packet processing, and scales to thousands of services per cluster without performance degradation.
Connect Kubernetes clusters, VMs, and bare-metal servers across AWS, Azure, GCP, and on-premises data centers with encrypted cluster mesh networking and consistent policy enforcement regardless of where workloads run.
Enforce identity-aware network policies at the kernel level using Kubernetes labels, DNS names, and CIDR ranges. Prevent lateral movement between namespaces and clusters with policies that follow workloads as they scale and migrate.
Capture forensic-grade records of every process execution, file access, and network connection at the kernel level. Automate compliance reporting for PCI DSS, SOC 2, HIPAA, and FedRAMP with continuous runtime evidence collection.
Detect and block container escapes, privilege escalations, cryptominers, and reverse shells in real time with Tetragon security policies that enforce at the kernel level — before malicious processes can execute.
Replace kube-proxy and external load balancers with XDP-accelerated L3/L4 load balancing that handles millions of connections per second with sub-millisecond latency and direct server return.
Open-Source Foundation
Tetragon, also created by Isovalent, brings eBPF-based runtime security observability and enforcement to the kernel level. Together, these projects form the foundation of the Isovalent Enterprise Platform, now part of Cisco’s cloud-native security portfolio.
Isovalent Enterprise Platform integrates with the broader Cisco security portfolio to deliver end-to-end protection from the kernel to the cloud edge.
Integrations
Complement perimeter and east-west firewall enforcement with kernel-level micro-segmentation inside Kubernetes clusters for defense in depth across every network boundary.
Extend AI-native distributed security fabric with eBPF-powered enforcement points embedded directly in the Linux kernel of every node running containerized workloads.
Combine application-level microsegmentation with kernel-level runtime security for comprehensive workload protection across Kubernetes and traditional server environments.
Native support for GKE, EKS, AKS, OpenShift, Rancher, and Tanzu — with validated deployment guides and enterprise support for every major Kubernetes distribution.
AI-native security fabric that embeds distributed enforcement points across your data center, cloud, and edge infrastructure for autonomous threat detection and response.
Microsegmentation and workload protection platform that maps application dependencies and enforces zero-trust policies across bare-metal, VM, and container environments.
SaaS-based cloud firewall protecting workloads across AWS, Azure, GCP, and Oracle Cloud with a single control plane for ingress, egress, and east-west traffic.
Our Cisco-certified team can help you evaluate, license, and deploy Isovalent Enterprise Platform across your Kubernetes and hybrid infrastructure.