apidays LIVE JAKARTA - Connecting the Digital Stack Take control of your microservices with App Mesh Akhmad Makki, Enterprise Solution Strategist at Software AG

1. © 2020 Software AG. All rights reserved.1
Take Control of your
Microservices with AppMesh
Akhmad Makki
Enterprise Solutions Strategist
September 2020

2. Why Microservices?
© 2020 Software AG. All rights reserved. For internal use only and for Software AG Partners.2
Flexibility Agility
Scalability Redundancy
For Business
Agility to respond to
business
transformation
as often as required
In a microservices architecture, services are fine-grained, and the protocols are lightweight. The
benefit of decomposing an application into different smaller services are improving modularity
and scalability. (Wikipedia)

3. Monolith to Microservices
© 2020 Software AG. All rights reserved. For internal use only and for Software AG Partners.3
It is a hard journey yet important to support business growth
UI
Business Logic
Data Access
UI
Monolithic Architecture Microservices Architecture

4. Microservices are Replacing the Monolith
But creating imminent challenges
MONOLITH
MORE AGILITY AND FLEXIBILITY
MICROSERVICES
LOWER OPERATIONAL COMPLEXITY AND COST
MICROSERVICES How are these services
going to find each other?
How are these services going
to securely connect to each
other?
How are these services going
to detect failures and do a
retry?
How does the application log,
monitor and trace the service
calls?
Code it in the service?
© 2020 Software AG. All rights reserved.

5. © 2020 Software AG. All rights reserved. For internal use only and for Software AG Partners.
Most Common Features in Service Mesh
Features Capabilties
Service Discovery
Discovery of service endpoints through a dedicated
service registry
Observability Metrics, monitoring, distributed logging, distributed tracing
Resiliency / Fault Tolerance
Circuit-breaking, retries and timeouts, fault injection, fault
handling, load balancing and failover.
Connectivity
Primitive routing capabilities, with simple logics unrelated
to the business functionality of the service
Security Control
Transport level security (TLS), simple blacklist and
whitelist based access control

6. Service Mesh can Handle Operational Requirements
MONOLITH
MORE AGILITY AND FLEXIBILITY
LOWER OPERATIONAL COMPLEXITY AND COST
MICROSERVICES SERVICE MESH
Service discovery on the
network
Observability of metrics and
logs
Fault tolerance with health
checks and failover
Connectivity of consumers to
service endpoints
& other network-level
enforcements
© 2020 Software AG. All rights reserved.

7. To Mesh or not to Mesh
© 2020 Software AG. All rights reserved.7
Service Mesh helps us to focus on the business logics
Write code to:
• Establish secure connection
• Discover and call service
• Detect issues and recover
• Log for forensics
• Trace for observability
Service A
Write code to:
Authenticate client
Authorize client
Run business logic
Log for forensics
Trace for observability
Service B
Write code to:
Call service
Service A
Write code to:
Run business logic
Service B
Policies
• Establish secure connection
• Discover service
• Detect issues and recover
• Log for forensics
• Trace for observability
Policies
• Authenticate client
• Authorize client
• Log for forensics
• Trace for observability
Without Mesh With Mesh
Connection options
Source: With Microservices, A Service Mesh Helps Developers Focus On The Business, Forrester, October 2019

8. Runtime platform
Service mesh
Runtime platform
Service mesh
Runtime platform
To Mesh or not to Mesh
© 2020 Software AG. All rights reserved.8
Bring in the domains along the business growth
Domain A Domain B Domain C

9. To Mesh or not to Mesh
© 2020 Software AG. All rights reserved.9
Don’t build a bigger Death Star with the same design flaw
Runtime platform
Service mesh
Domain B
Runtime platform
Service mesh
Domain C
Runtime platform
Domain A

10. To Mesh or not to Mesh
© 2020 Software AG. All rights reserved.10
Don’t build a bigger Death Star with the same design flaw
Runtime platform
Domain A
API Gateway
Runtime platform
Service mesh
Domain B
API Gateway
Runtime platform
Service mesh
Domain C
API Gateway
Runtime platform
Service mesh
Domain D
Runtime platform
Domain E
Runtime platform
Domain A
API Gateway
Runtime platform
Service mesh
Domain B
API Gateway
Runtime platform
Service mesh
Domain C
API Gateway
Runtime platform
Domain A
API Gateway
Runtime platform
Service mesh
Domain B
API Gateway
Runtime platform
Service mesh
Domain B
API Gateway
Runtime platform
Service mesh
Domain C
API Gateway
Runtime platform
Domain A
API Gateway
Runtime platform
Service mesh
Domain B
API Gateway
Runtime platform
Domain A
API Gateway
Domain B Domain E
Runtime platform
Domain A
API Gateway
Runtime platform
Service mesh
Domain B
API Gateway
Runtime platform
Service mesh
Domain C
API Gateway
Runtime platform
Domain A
API Gateway
Runtime platform
Service mesh
Domain B
API Gateway
Runtime platform
Domain A
API Gateway
Runtime platform
Domain A
API Gateway
Runtime platform
Service mesh
Domain B
API Gateway
Runtime platform
Domain A
API Gateway
Runtime platform
Service mesh
Domain B
API Gateway
Runtime platform
Service mesh
Domain C
API Gateway
Runtime platform
Domain A
API Gateway
Runtime platform
Service mesh
Domain B
API Gateway
Runtime platform
Domain A
API Gateway
Runtime platform
Service mesh
Domain B
API Gateway
Runtime platform
Service mesh
Domain C
API Gateway
Runtime platform
Domain A
API Gateway
Runtime platform
Service mesh
Domain C
API Gateway
Runtime platform
Service mesh
Domain B
API Gateway
Runtime platform
Service mesh
Domain B
API Gateway
Domain C
Domain L
Runtime platform
Domain A
API Gateway
Runtime platform
Service mesh
Domain B
API Gateway
Runtime platform
Service mesh
Domain C
API Gateway
Runtime platform
Domain A
API Gateway
Runtime platform
Service mesh
Domain B
API Gateway
Runtime platform
Domain A
API Gateway
Runtime platform
Domain A
API Gateway
Runtime platform
Service mesh
Domain B
API Gateway
Runtime platform
Domain A
API Gateway
Runtime platform
Service mesh
Domain B
API Gateway
Runtime platform
Service mesh
Domain C
API Gateway
Runtime platform
Domain A
API Gateway
Runtime platform
Service mesh
Domain B
API Gateway
Runtime platform
Domain A
API Gateway
Runtime platform
Service mesh
Domain B
API Gateway
Runtime platform
Service mesh
Domain C
API Gateway
Runtime platform
Domain A
API Gateway
Runtime platform
Service mesh
Domain C
API Gateway
Runtime platform
Service mesh
Domain B
API Gateway
Runtime platform
Service mesh
Domain B
API Gateway
Runtime platform
Domain A
API Gateway
Runtime platform
Service mesh
Domain B
API Gateway
Runtime platform
Service mesh
Domain C
API Gateway
Runtime platform
Domain A
API Gateway
Runtime platform
Service mesh
Domain B
API Gateway
Runtime platform
Domain A
API Gateway
Runtime platform
Domain A
API Gateway
Runtime platform
Service mesh
Domain B
API Gateway
Runtime platform
Domain A
API Gateway
Runtime platform
Service mesh
Domain B
API Gateway
Runtime platform
Service mesh
Domain C
API Gateway
Runtime platform
Domain A
API Gateway
Runtime platform
Service mesh
Domain B
API Gateway
Runtime platform
Domain A
API Gateway
Runtime platform
Service mesh
Domain B
API Gateway
Runtime platform
Service mesh
Domain C
API Gateway
Runtime platform
Domain A
API Gateway
Runtime platform
Service mesh
Domain C
API Gateway
Runtime platform
Service mesh
Domain B
API Gateway
Runtime platform
Service mesh
Domain B
API Gateway
DomainO
Domain 1

11. To Mesh or not to Mesh
© 2020 Software AG. All rights reserved.11
Don’t build a bigger Death Star with the same design flaw

12. Runtime platform
Service mesh
Runtime platform
Service mesh
Runtime platform
To mesh or not to Mesh
© 2020 Software AG. All rights reserved.12
Control the runtime with API Management
Domain A Domain B Domain C
APIGateway
APIGateway
APIGateway
APIGateway
API Gateway API Gateway API Gateway
API Management

13. Gateways Built Fit for Each Purpose
© 2020 Software AG. All rights reserved.13
Main gateway vs Microgateway
• Main / Edge gateway
serves north-south traffic
• Protects and mediates
public APIs
• Primarily interdomain
services
• Microgateways serve
east-west traffic
• Protect and mediate
private APIs
• They are light weight and
only carry the policies
they need right now
• Primarily domain
services

14. The Gap in Service Mesh Implementation
© 2020 Software AG. All rights reserved.14
Application contexts are still not covered
MONOLITH
MORE AGILITY AND
FLEXIBILITY
LOWER OPERATIONAL COMPLEXITY AND
COST
Discovery
Observability
Fault tolerance
Connectivity
& other network enforcements ...
Technical / Network
Write code to mask sensitive data
Write code to understand who the
end-user of application is
Write code to route based on data
Write code to obtain business related
analytics
Business / Application
MICROSERVICES SERVICE MESH

15. Service Mesh + Business Context = AppMesh
© 2020 Software AG. All rights reserved.15
Code Configuration
SERVICE MESH APPMESH
API-fication
Application context-aware
policies
Service consumption
enablement
API integration enablement
Application level monitoring Mesh landscape visualization

16. API Partner Engagement
© 2020 Software AG. All rights reserved.16
Engaging developers community while enforcing governance
API Gateway API Gateway
APIGateway
APIGateway
API
Governance
API Portal
Community Engagement

17. Microservices and API Management
© 2020 Software AG. All rights reserved.17
Bridging microservices with the control and visibility
Microservices give us
flexibility but increase
complexity
Service mesh
implementations help but
have a big gap which sets
us back
AppMesh bridges the
Microservices world
with API Management
for control and visibility

18. Software AG Ranked as a Leader
© 2020 Software AG. All rights reserved.18
Forrester’s 2020 API Management Solutions Wave
“In our evaluation, Software AG’s solution did well across a strong majority of
our criteria, particularly in its portal, API user engagement, and product
architecture aspects ... ”
“The firm’s vision and future investments encompass key business and technical
aspects of API value and technology features, including extended ecosystems,
API product management, multicloud environments, and edge computing.”
“Software AG’s modular solution has broad strengths to serve diverse API
strategies. With the elements of its solution architected as independent-but-
integrated products ... customers can adopt its solution via different paths.”
“Overall, the solution is flexible enough to support a wide range of API
strategies, especially for customers that are ready for the strong governance and
discipline necessary to ensure strategic success of one’s API program.”
Source: The Forrester Wave™: API Management Solutions, Q3 2020 Forrester Research, Inc., August 4, 2020.
The Forrester Wave is copyrighted by Forrester Research, Inc. Forrester and Forrester Wave are trademarks of Forrester Research, Inc. The Forrester Wave is a graphical representation of
Forrester's call on a market and is plotted using a detailed spreadsheet with exposed scores, weightings, and comments. Forrester does not endorse any vendor, product, or service depicted in
the Forrester Wave. Information is based on best available resources. Opinions reflect judgment at the time and are subject to change.

19. Software AG - See Why We are the Leader!
© 2020 Software AG. All rights reserved.19
Try it for free
Sign up for a free trial at
SoftwareAG.cloud
Check out our demos online
See youtu.be/hJKiP3YltzI
Visit us at GitHub
See github.com/SoftwareAG and
more
Take the next steps…
% GET api.softwareag.com  200 OK
% PUT your.api.program/on/track  201 Created (Success)

20. © 2020 Software AG. All rights reserved.20