We are very excited to announce v3.2 of Tigera Calico. Some of the highlights of this release are:
GA for Application Layer Policy
With Tigera Calico 3.2 we are moving support for application layer policy from “tech preview” to GA. With today’s evolving threat landscape, enterprises are deploying a zero trust network security model to protect their crown jewels. Application layer policy from Tigera Calico, combined with the open source Istio project simplifies authenticating and authorizing network flows using multiple attributes. Learn more about this capability and walkthrough a tutorial here.
Tigera Calico 3.2 updates support for ipvs proxy from beta to GA. Tigera Calico IPVS support is activated automatically if Tigera Calico detects that kube-proxy is running in IPVS mode. IPVS kube-proxy promises greater scale and performance. Learn more about how to get started with IPVS using Tigera Calico and also some known limitations here.
Labels for OpenStack EndPoints
If using Tigera Calico with OpenStack endpoints, each OpenStack VM identified as Tigera Calico workload endpoint will now have labels for project name and security groups the virtual machine belongs to. See Tigera Calico documentation for more details on this capability.
Thanks to concerted efforts from the community, images are now available for all components for the arm64 and ppc64le architectures.