GKE Enterprise

Overview

• ”Write once, run anywhere”
• Kubernetes on Google Cloud, AWS, Azure and on-prem (VMware and bare metal)
  • Google managed control plane
• Supports:
  • Kubernetes Engine clusters
  • Cloud Run
  • Compute Engine VMs
• Migrate for Anthos and GKE—migrate legacy workloads to containers
• Anthos Config Management
  • Policy enforcement
  • Guardrails
  • Security in depth
• Anthos Service Mesh
  • Managed, observable, secure communications between microservices
  • Istio
  • Control-plane and data-plane
  • Traffic monitored through a proxy—auto-instrumentation/injection, so no code changes required
  • Canary and blue/green deployments
  • Load balancing between services
  • Telemetry
• Cloud Run for Anthos
  • Knative
  • Serverless workloads
  • Advanced autoscaling—scale to zero (or minimum availability)
  • Automatic networking
  • A/B tests—traffic splitting, rollbacks
• Anthos Fleets
  • Groups of clusters
  • Normalisation of resources, e.g.
    • Namespaces
    • Services
    • Workload Identity
• Binary Authorization
  • Validation policies for container image deployments—CI/CD

Components

• GKE
• Multi Cluster Ingress
• Migrate for Anthos and GKE

Attached Clusters

• Extend Anthos into Kubernetes clusters running in other environments
• Single pane of glass view of all clusters
• Supports Amazon EKS and Azure AKS
• Support for ACM and ASM
• Install agent in cluster
• Ability to see workloads in console UI

Supported Versions

• Versions indicated by semver numbering: x.y.z
• Quarterly major/minor releases
• Monthly path releases
• Google support previous n–2 releases