DevOps

Service Mesh & Istio

Traffic management, observability, security, sidecars, virtual services, gateways, Linkerd comparison

24 gespreksvragen·
Senior
1

What is the main role of a service mesh like Istio in a microservices architecture?

Antwoord

A service mesh manages communication between microservices by providing traffic management, observability, and security features without modifying application code. Istio injects a sidecar proxy (Envoy) next to each pod to intercept and manage all network traffic. This centralizes configuration for retry, timeout, circuit breaking, mTLS, and distributed tracing at the infrastructure level rather than the application level.

2

How does the sidecar pattern work in Istio and which proxy is used by default?

Antwoord

Istio automatically injects an Envoy proxy container as a sidecar into each application pod via a mutating admission webhook. This sidecar intercepts all inbound and outbound traffic from the application container, enabling traffic management, security, and observability policies without code changes. Envoy is chosen for its high performance, modern protocol support (HTTP/2, gRPC), and ability to handle dynamic configuration via xDS APIs.

3

What is the difference between the control plane and the data plane in Istio?

Antwoord

The control plane (Istiod) manages configuration, discovers services, and distributes rules to proxies via xDS APIs. It contains Pilot for service discovery, Citadel for certificate management, and Galley for configuration validation. The data plane consists of Envoy sidecars that execute traffic rules by intercepting and routing requests between services. Istiod never touches application traffic, only the sidecars do.

4

What is the role of a VirtualService in Istio?

5

What is the difference between a Gateway and a VirtualService in Istio?

+21 gespreksvragen

Andere DevOps-sollicitatieonderwerpen

Version Control & Git

Junior
20 vragen

Linux Fundamentals

Junior
22 vragen

Shell Scripting & Bash

Mid-Level
20 vragen

Networking Basics

Junior
22 vragen

Docker Fundamentals

Junior
24 vragen

CI/CD Fundamentals

Junior
18 vragen

GitHub Actions

Mid-Level
22 vragen

GitLab CI/CD

Mid-Level
22 vragen

Jenkins

Mid-Level
22 vragen

Kubernetes Basics

Mid-Level
26 vragen

Kubernetes Networking

Mid-Level
24 vragen

Kubernetes Advanced

Mid-Level
24 vragen

Ingress & API Gateway

Mid-Level
20 vragen

Terraform Basics

Mid-Level
22 vragen

Terraform Advanced

Mid-Level
22 vragen

Ansible & Configuration Management

Mid-Level
20 vragen

AWS Essentials

Mid-Level
26 vragen

Azure Fundamentals

Mid-Level
22 vragen

GCP Fundamentals

Mid-Level
22 vragen

Monitoring & Prometheus

Mid-Level
22 vragen

Logging & ELK Stack

Mid-Level
20 vragen

Alerting & Incident Response

Mid-Level
20 vragen

Cloud Identity & Secrets

Mid-Level
22 vragen

CI/CD Pipeline Security

Mid-Level
20 vragen

Helm & Kubernetes

Mid-Level
20 vragen

Runtime & Cluster Security

Senior
24 vragen

Container Supply Chain Security

Senior
22 vragen

GitOps & ArgoCD

Senior
22 vragen

Progressive Delivery

Senior
20 vragen

Distributed Observability

Senior
22 vragen

Disaster Recovery & Backup

Senior
20 vragen

Performance Optimization

Senior
22 vragen

Cloud Cost Optimization

Senior
20 vragen

SRE Principles

Senior
24 vragen

Chaos Engineering

Senior
20 vragen

Platform Engineering

Senior
22 vragen

Beheers DevOps voor je volgende gesprek

Krijg toegang tot alle vragen, flashcards, technische tests, code review-oefeningen en gespreksimulatoren.

Begin gratis