Red Hat Service Interconnect
Connects applications and microservices together across Clouds, Kubernetes Clusters, or standalone VMs.
When relying on multiple cloud providers for redundancy, maintaining database consistency across clouds is crucial for replicating environments seamlessly. With Service Interconnect, databases can use their native replication features across a protected channel, without compromising the services of one cloud to those of another.
Service Interconnect allows legacy or “never-migrate” applications to continue running independently in their original environments while new web-tier applications are deployed in the cloud. To the cloud-native apps running in the cloud, these “legacy” apps appear to be cloud-native apps as well.
Service Interconnect lets you migrate progressively, one service at a time, reducing effort and risk when migrating between major versions of OpenShift or from any CNCF certified Kubernetes to OpenShift. Services are moved from the source to the target OpenShift cluster one by one. The services themselves behave as if they are still on the same cluster until the migration is complete.
When services or applications are located on Red Hat Enterprise Linux (RHEL), Service Interconnect installs as a systemd service, a RHEL Service Gateway, or Podman containers on the same RHEL machine or even on an adjacent RHEL machine on the same network segment, allowing services to be migrated progressively to OpenShift.
Red Hat Service Interconnect enables seamless multicloud, hybrid cloud, and edge connectivity so you can easily connect your applications and services. Access private cloud services from the public cloud without the need for VPNs while ensuring your data stays protected. Service Interconnect also lets you add and remove new clusters on the fly, giving you greater flexibility and control.
Service Interconnect is equipped with built-in security that scales across clusters and clouds by default. The connections between Service Interconnect routers are secured with mutual TLS using a private, dedicated certificate authority (CA). Each router is uniquely identified by its own certificate. This means that the Service Interconnect network is isolated from external access, preventing security risks such as lateral attacks, malware infestations, and data exfiltration.
With Red Hat Service Interconnect, you won't need to make any changes to your existing application or have administrator privileges. Our solution provides transparent communication through HTTP/1.1, HTTP/2, gRPC, and TCP, enabling seamless integration into your current system.
Simplify service connectivity through layer 7 addressing and routing. Service Interconnect’s redundant routing feature ensures high availability even during network failures. Dynamic load balancing allows for better traffic management and improved performance. Service Interconnect provides efficient and optimized routing with cost- and locality-aware traffic forwarding.
Interconnections created are agnostic of the environment and IP version (such as IPv4 and IPv6); they enable portability for both applications and their associated networking. This lets you migrate applications easily without recreating the networking.
Service Interconnect provides a simple command-line interface that development teams can use without elevated privileges to establish trusted connections across environments.
Skupper is a layer 7 service interconnect that enables secure communication across Kubernetes clusters with no VPNs or special firewall rules. With Skupper, your application can span multiple cloud providers, data centers, and regions. The Skupper project is completely open source and licensed under the Apache License version 2.0.