020 3929 5822 | [email protected]
Unified Network Security & Observability for Kubernetes
A single platform for any Kubernetes distribution in the cloud, on premises or at the edge.
Contact Us Discover Products
Network Security and Observability for Containers and Kubernetes
Reduce Tool Sprawl
Unify networking, network security, and observability with one Calico platform. Eliminate tool sprawl, reduce integration effort, and close visibility gaps, so teams spend less time managing tools and more time delivering value.
Run Anywhere, Without Lock-In
Ensure workload portability across EKS, AKS, GKE, OpenShift, Rancher, and more. Calico’s extensive Kubernetes distribution and dataplane support let you move freely, maintain compliance, and avoid costly Kubernetes platform vendor lock-in.
Scale Without the Complexity
Expand across clusters with built-in multi-cluster networking, security, and observability without the need for a separate and expensive service mesh solution. Calico delivers seamless multi-cluster connectivity, centralized policy control, and consistent visibility across Kubernetes, VMs, and bare metal, so you can scale confidently across all environments without adding overhead or risk.
Minimize Business Outages
Gain unified observability and control at scale. Calico delivers real-time visibility, consistent policy enforcement, and automated threat detection across all clusters. By streamlining troubleshooting and reducing manual effort, it helps teams maintain uptime, meet compliance goals, and prevent service interruptions before they occur.
Calico Open Source: Foundation for network security
Most adopted container networking and security solution
Calico Open Source by the numbers
8000000+
Nodes
1000000+
Clusters
1400000000+
Docker Pulls
50000+
Enterprises
50+
of Fortune 100
166+
Countries
Calico Editions
Unified network security and observability to prevent, detect and mitigate security breaches in Kubernetes clusters
Calico Open Source
Calico Open Source is a networking and security solution for containers, virtual machines, and native host-based workloads that was born out of Project Calico.
Best Fit:
Users who want open source, best-in-class networking, network security, and observability capabilities for Kubernetes.
Request a Quote
Calico Cloud Free Tier
A free, single cluster, single user version of Calico Cloud that provides additional enhanced Kubernetes observability and network security capabilities for Calico Open Source users.
Best Fit:
Calico Open Source users who want to leverage some of the improved observability and policy management capabilities that are available in Calico Cloud for free.
Request a Quote
Calico Cloud
Calico Cloud is a fully-managed SaaS platform that provides unified network security and observability to prevent, detect and mitigate security breaches in Kubernetes clusters. It is built on Calico Open Source, the most widely adopted container networking and security solution.
Best Fit:
Organizations that want a fully managed SaaS platform for network security and observability.
Request a Quote
Calico Enterprise
Calico Enterprise is a self-managed platform for unified network security and observability to prevent, detect and mitigate security breaches in Kubernetes clusters. It is built on Calico Open Source, the most widely adopted container networking and security solution.
Best Fit:
Organizations that want a self-managed platform for network security and observability.
Request a QuoteCommitment to Open Source
We are committed to developing, cultivating, and supporting open-source projects and communities.
Compare Products
| Calico Open Source | Calico Cloud Free Tier* | Calico Cloud | Calico Enterprise | |
|---|---|---|---|---|
| Management and Support | ||||
| Multi-cluster security controls management | ||||
| Data retention | In-memory | 24 hours | 7 days | Unlimited |
| Number of clusters | Unlimited | One | Unlimited | Unlimited |
| Support and maintenance | Community-driven | Community-driven | Standard/Business | Standard/Business |
| Networking | ||||
| High performance, scalable pod networking | ||||
| Advanced IP address management | ||||
| Direct infrastructure peering without the overlay | ||||
| eBPF data plane | ||||
| Windows data plane | ||||
| nftables data plane | ||||
| iptables data plane | ||||
| VPP data plane | ||||
| Multiple Calico networks on a pod | ||||
| Dual ToR peering | ||||
| Ingress Gateway | ||||
| Egress Gateway | ||||
| Cluster Mesh | ||||
| Istio Ambient Mode | ||||
| Network Security | ||||
| Seamless support for Kubernetes network policy | ||||
| Label-based policies for K8s and non-K8s workloads | ||||
| Namespace and cluster-wide scope | ||||
| Global default deny policy design | ||||
| Application layer policy | ||||
| Policy for services | ||||
| Policy board | View only | |||
| DNS/FQDN-based policy | ||||
| Hierarchical tiered network policy | ||||
| Policy recommendations | ||||
| Staged network policy | ||||
| Preview staged policies | ||||
| Network sets to limit IP ranges for egress and ingress traffic to workloads | ||||
| Data-in-transit encryption | ||||
| Universal firewall integration | ||||
| Workload-based IDS/IPS | ||||
| Deep Packet Inspection (DPI) | ||||
| DDoS protection | ||||
| Workload-centric WAF | ||||
| Ingress WAF | ||||
| Compliance reporting and alerts | ||||
| SIEM integrations | ||||
| Network Security for VMs and Bare Metal | ||||
| Restrict traffic to/from hosts and VMs using network policy | ||||
| Automatic host endpoints | ||||
| Apply policy to host-forwarded traffic | ||||
| Centralized log forwarding for VMs and Bare Metal Hosts | ||||
| Observability | ||||
| Goldmane API to retrieve flow logs | ||||
| Calico Whisker UI | ||||
| Dynamic Service and Threat Graph | ||||
| Application level observability | ||||
| Dynamic packet capture | ||||
| Flow visualizer | ||||
| Logs (flow) | ||||
| Logs (http traffic, audit, bgp, dns, events) | ||||
| Calico Dashboards | ** | |||
| Alerts | ||||
*Calico Cloud Free Tier - Requires Calico OSS 3.30 and higher
**Calico Cloud Free Tier includes some of the dashboards that are in the Calico Cloud/Enterprise
What is Project Calico?
Project Calico is an open-source project with an active development and user community. Calico Open Source was born out of this project and has grown to become the most widely adopted solution for container networking and security, powering 8M+ nodes daily across 166 countries.
Learn More Visit Calico Github
Why Use Calico?
Single Solution
A single, unified platform for all Kubernetes networking, network security, and observability needs that works on any Kubernetes distribution
Workload Interoperability
Works with container, VM, and bare metal workloads
Data Plane Choice
Works with eBPF, iptables, nftables, Windows, and VPP data planes with a future-proof pluggable architecture
Optimized Performance
Built to go faster with lower CPU consumption, to help you get the best possible performance from your investment in clusters
Network Security
Simplify the enforcement of network security with Calico network policies
Observability
Gain deep insights with “Whisker” into workload traffic to quickly identify and troubleshoot issues
Ingress Gateway
Enterprise-grade advanced traffic control based on the Kubernetes Gateway API
Enterprise Grade
Enterprise hardened networking and simplified network security for cloud-native applications
Solutions Offered
Explore our wide range of cutting-edge technologies.
A continuous, proactive, and often automated process that keeps your computer systems, networks, and enterprise applications safe from cyberattacks and data breaches.
A set of technologies, policies, and best practices that protect data, applications, and infrastructure in cloud environments.
Miscellaneous Technology encompasses diverse tools and solutions designed to address unique and specialized technological needs.
A software deployment process that bundles an application's code with all the files and libraries it needs to run on any infrastructure.
Backup and DR service enables users to protect backups against malicious attack and to recover in new environments.
It's the state of being safe or protected from harm, or the actions taken to achieve this state.