Romana is a network and security automation solution for cloud native applications.
Romana automates the creation of isolated cloud native networks and secures applications using micro segmentation and enforces access control policies on all endpoints, wherever they run.
Integration with cloud orchestration systems lets developers use their existing tools and workflow to build secure applications with the deployment flexibility they need.
Microsegmentation of the network enables fine-grained access control policies to be applied to all application traffic. Romana uses familiar layer 3 network techniques to build secure, cloud native networks without a virtual network overlay.
Romana works in conjunction with cloud orchestration systems and issues IP addresses using an intelligent, topology-aware IP Address Management (IPAM) system. Each microsegment is made up of one or more network CIDRs that define the segment boundary. Romana then installs routes to these segments on hosts and network devices so that they can forward traffic directly to endpoints and enforce network policy without the overhead of encapsulation.
Applications that run with Romana are easier to operate and deliver higher performance than when using a virtual network overlay.
With Romana, an overlay is never required, even across availability zone boundaries. Romana’s innovative approach enables seamless hybrid cloud deployment and lets container orchestration systems transparently scale capacity across private and public clouds worldwide.
Integration with Kubernetes and other cloud orchestration systems lets application developers use their existing tools and workflow to secure their applications with the deployment flexibility they need.
Romana is all open source and is deployed successfully today on servers running thousands of container workloads by operators of some of the largest on-line applications. The current v1.5 release lets you deploy cloud native applications securely on isolated networks with policy based control. Romana runs in any IaaS, so developers running Kubernetes in a public cloud now have a way to apply network and security policies to all pod communications.
|Download||Romana Download Page|
|FAQ||Romana FAQ Page|
Use of the SDxCentral service directory is governed by our Terms of Service, including without limitation those sections under the headings "CONTENT", "LICENSING AND OTHER TERMS APPLYING TO CONTENT POSTED ON THE SDXCENTRAL SITES", "INDEMNITY; DISCLAIMER; LIMITATION OF LIABILITY" AND "COPYRIGHTS". Under no circumstances will SDxCentral be liable in any way for any Content, including, but not limited to, liability for any errors or omissions in any Content or for any loss or damage of any kind incurred as a result of the use of any Content posted, emailed or otherwise transmitted via the Sites.