TechOps Examples
Posts
How Do I Choose? Kubernetes Ingress Vs Gateway API Vs Service Mesh

How Do I Choose? Kubernetes Ingress Vs Gateway API Vs Service Mesh

Govardhana M K
September 11, 2025

In partnership with

Upgrade | Advertise

TechOps Examples

Hey — It's Govardhana MK 👋

Welcome to another technical edition.

Every Tuesday – You’ll receive a free edition with a byte-size use case, remote job opportunities, top news, tools, and articles.

Every Thursday and Saturday – You’ll receive a special edition with a deep dive use case, remote job opportunities, and articles.

👋 Before we begin... a big thank you to today's sponsor GUIDDE

Create How-to Videos in Seconds with AI

Stop wasting time on repetitive explanations. Guidde’s AI creates stunning video guides in seconds—11x faster.

Turn boring docs into visual masterpieces
Save hours with AI-powered automation
Share or embed your guide anywhere

How it works: Click capture on the browser extension, and Guidde auto-generates step-by-step video guides with visuals, voiceover, and a call to action.

Best part? It’s 100% free.

👉 Download the extension now

👀 Remote Jobs

Trust Wallet is hiring a Senior Release Engineer
Remote Location: Worldwide
New Era Technology is hiring a DevSecOps Engineer
Remote Location: Worldwide

📚️ Resources

A Practical Guide to Error Handling in Go

Engineering Homelab - so I don't pay cloud providers

AWS Roadmap - Step by step guide to learning AWS in 2025

🔴 Get my DevOps & Kubernetes ebooks! (free for Premium Club and Personal Tier newsletter subscribers)

Looking to promote your company, product, service, or event to 52,000+ Cloud Native Professionals? Let's work together. Advertise With Us

🧠 DEEP DIVE USE CASE

How Do I Choose? Kubernetes Ingress Vs Gateway API Vs Service Mesh

Kubernetes gives you multiple ways to manage how traffic enters and flows inside the cluster. The three common choices are Ingress, Gateway API, and Service Mesh.

Ingress helps you expose applications to the outside world.
Gateway API extends that model with support for more protocols and modern routing needs.
Service Mesh shifts the focus to secure and reliable communication between services inside the cluster.

Before deciding, it is important to understand what problem each one is built to solve.

1. Ingress

Ingress manages external HTTP and HTTPS traffic into a Kubernetes cluster. It connects requests from outside the cluster to the right service inside, works with an Ingress Controller such as NGINX, HAProxy, or Traefik.

Practical Caveats:

Tied to HTTP: No built in support for TCP, UDP, or gRPC.
Cluster scoped: You configure Ingress at the cluster level, making it less flexible for multi-team or multi-tenant scenarios.
Limited Extensibility: Annotations and custom CRDs are needed for advanced use cases like rate limiting, header modifications, and multi-tenancy.
No Fine grained Routing Control: Ingress only supports host/path-based routing, meaning complex routing logic often needs workarounds with annotations or controller specific features.
Network Policies Conflicts: Ingress does not inherently respect NetworkPolicy configurations, leading to cases where traffic gets routed despite restrictive policies.

❝

Ingress remains a solid choice for teams starting out, but once multiple teams, protocols, or advanced policies come into play, it starts showing cracks.

2. Gateway API

Gateway API extends traffic management in Kubernetes by adding native support for multiple protocols, namespace level delegation, and built in policy definitions that Ingress does not provide.

Multi protocol support: Native support for HTTP, TCP, UDP, and gRPC through HTTPRoute, TCPRoute, and UDPRoute resources. This allows you to define traffic rules beyond just HTTP(S).
Namespace scoped delegation: You can run multiple Gateways in the same cluster, each scoped to a namespace. making it ideal for multi tenant architectures.
Separation of responsibilities: Platform or cluster admins manage the Gateways, while application teams attach their own HTTPRoute, TCPRoute, or UDPRoute objects. This removes the bottleneck of every change depending on the admin.
Policy Enforcement: Features like rate limiting, retries, header modification, and traffic splitting are available as API resources. These are part of the spec, not custom annotations, which makes them portable across implementations.
Vendor consistency: Behaviors are standardized across different controllers and vendors, reducing the lock in and inconsistencies that Ingress often introduces.

With these basics, let us understand Kubernetes Service Mesh before getting into when to use what.

I am giving away 25% OFF on all annual plans of membership offerings.

A membership will unlock access to read these deep dive editions on Thursdays and Saturdays.

Get greater value at a fractional price

Upgrade to Paid to read the rest.

Become a paying subscriber to get access to this post and other subscriber-only content.

Upgrade

Already a paying subscriber? Sign In.

Paid subscriptions get you:

• Access to archive of 200+ use cases
• Deep Dive use case editions (Thursdays and Saturdays)
• Access to Private Discord Community
• Invitations to monthly Zoom calls for use case discussions and industry leaders meetups
• Quarterly 1:1 'Ask Me Anything' power session