/v1.4/concepts/introduction/gateway_api_extensions/Recent content in Gateway API Extensions on Envoy GatewayHugoen/v1.4/concepts/introduction/gateway_api_extensions/backend-traffic-policy/Mon, 01 Jan 0001 00:00:00 +0000/v1.4/concepts/introduction/gateway_api_extensions/backend-traffic-policy/<h2 id="before-you-begin">Before you Begin<a class="td-heading-self-link" href="#before-you-begin" aria-label="Heading self-link"></a> </h2> <ul> <li><a href="/v1.4/concepts/introduction/gateway_api_extensions/">Gateway API Extensions</a></li> </ul> <h2 id="overview">Overview<a class="td-heading-self-link" href="#overview" aria-label="Heading self-link"></a> </h2> <p><code>BackendTrafficPolicy</code> is an extension to the Kubernetes Gateway API that controls how Envoy Gateway communicates with your backend services. It can configure connection behavior, resilience mechanisms, and performance optimizations without requiring changes to your applications.</p> <p>Think of it as a traffic controller between your gateway and backend services. It can detect problems, prevent failures from spreading, and optimize request handling to improve system stability.</p>/v1.4/concepts/introduction/gateway_api_extensions/client-traffic-policy/Mon, 01 Jan 0001 00:00:00 +0000/v1.4/concepts/introduction/gateway_api_extensions/client-traffic-policy/<h2 id="before-you-begin">Before you Begin<a class="td-heading-self-link" href="#before-you-begin" aria-label="Heading self-link"></a> </h2> <ul> <li><a href="/v1.4/concepts/introduction/gateway_api_extensions/">Gateway API Extensions</a></li> </ul> <h2 id="overview">Overview<a class="td-heading-self-link" href="#overview" aria-label="Heading self-link"></a> </h2> <p><code>ClientTrafficPolicy</code> is an extension to the Kubernetes Gateway API that allows system administrators to configure how the Envoy Proxy server behaves with downstream clients. It is a policy attachment resource that can be applied to Gateway resources and holds settings for configuring the behavior of the connection between the downstream client and Envoy Proxy listener.</p> <p>Think of <code>ClientTrafficPolicy</code> as a set of rules for your Gateway&rsquo;s entry points, it lets you configure specific behaviors for each listener in your Gateway, with more specific rules taking precedence over general ones.</p>/v1.4/concepts/introduction/gateway_api_extensions/security-policy/Mon, 01 Jan 0001 00:00:00 +0000/v1.4/concepts/introduction/gateway_api_extensions/security-policy/<h2 id="before-you-begin">Before you Begin<a class="td-heading-self-link" href="#before-you-begin" aria-label="Heading self-link"></a> </h2> <ul> <li><a href="/v1.4/concepts/introduction/gateway_api_extensions/">Gateway API Extensions</a></li> </ul> <h2 id="overview">Overview<a class="td-heading-self-link" href="#overview" aria-label="Heading self-link"></a> </h2> <p><code>SecurityPolicy</code> is an Envoy Gateway extension to the Kubernetes Gateway API that allows you to define authentication and authorization requirements for traffic entering your gateway. It acts as a security layer that only properly authenticated and authorized requests are allowed through your backend services.</p> <p><code>SecurityPolicy</code> is designed for you to enforce access controls through configuration at the edge of your infrastructure in a declarative, Kubernetes-native way, without needing to configure complex proxy rules manually.</p>