Isovalent Enterprise Platform 26.05: One Model for K8s, VMs, and LB

The News

Isovalent has released Enterprise Platform 26.05, a coordinated update across its Cilium, Tetragon, and Hubble-based product portfolio. The release promotes Isovalent Networking for Virtualization (INV) to general availability, introduces ExternalLB for shared load balancing across tenant Kubernetes clusters, and advances Hubble Timescape as the primary interface for traffic inspection and policy management. Collectively, the release is aimed at platform teams running mixed infrastructure: Kubernetes alongside virtual machines, across private data centers, private clouds, and public cloud environments, all under a single operational model.

Analyst Take

The real problem this release is solving

Platform teams have spent years getting Kubernetes to work well. The harder problem now is getting it to work alongside everything else: legacy virtual machines, established network fabrics, tenant cluster sprawl, and security tooling that still requires human interpretation to act on. Isovalent’s 26.05 release is a direct response to that operational reality.

The emphasis on “one operating model” is the telling phrase. Most enterprise infrastructure shops don’t get to wipe the slate clean. They run hybrid environments by necessity, not preference. ECI Research’s 2026 Application Development survey found that 30.9% of respondents said 21–40% of their production workloads still run in on-premises data centers, and 55.8% said 0–20% of their workloads are on-premises. Read together, those figures describe an industry that has moved significantly toward cloud but has not completed the journey. The long tail of on-premises workloads is exactly where VM networking complexity lives, and it’s exactly the problem INV GA is designed to address.

INV GA: the migration case is the business case

The general availability of Isovalent Networking for Virtualization is the most consequential item in this release for ITDMs. VM-to-Kubernetes migration projects routinely stall not because of compute or storage complexity, but because of network assumptions baked into applications: IP addresses tied to allow lists, configurations, and operational runbooks. Isovalent Network Bridge’s IP-preservation capability is aimed at attacking this friction point. The Zyzygy proof point, involving a 500-VM migration, could give procurement teams a concrete reference for the scale and shape of the use case.

For developers and platform engineers, the Isovalent Private Network abstraction matters more. It brings tenant segmentation, overlapping CIDR support, and address-space isolation to VM workloads without requiring application teams to redesign their networking before migration. DHCP support could close another gap: VM estates that rely on dynamic address assignment can now be managed within the same platform model rather than treated as exceptions. The net effect is a migration path that can proceed in phases, which is how large enterprises actually operate.

ExternalLB and the cluster-as-a-service pattern

ExternalLB deserves more attention than it typically receives in a multi-feature release. The pattern it enables, a single shared ILB cluster providing load balancing as a service to many tenant Kubernetes clusters, without requiring an ILB agent in every tenant cluster, is architecturally significant. It mirrors what public cloud providers deliver natively and brings that experience to private data centers and private cloud environments where platform teams still need direct control over VIP assignment, address advertisement, and health check behavior.

This is a platform engineering play, not just a networking feature. Teams building internal developer platforms or cluster-as-a-service offerings now have a mechanism to offer a cloud-like service consumption experience to application teams while retaining operational control at the platform layer. The addition of Backend TLS Policy and zone-aware load balancing with PreferSameZone for L7 traffic makes the feature set credible for production workloads, not just proof-of-concept deployments.

Runtime security and the observability convergence

The Tetragon-side additions in 1.19, particularly TetragonNetworkPolicy’s process-aware enforcement model and the shield abstraction, reflect a maturing view of what runtime security actually requires. Restricting traffic based on the binary that initiated it is a meaningful step beyond port- and label-based network policy. It creates a tighter feedback loop between observed behavior and enforced policy, which is precisely what security teams need when they’re trying to reduce broad allow rules without introducing fragility.

The Splunk case study cited in the release (66.5% CPU reduction and 74% memory reduction when replacing sidecar-based collection in Kubernetes) is a production-scale proof point that will resonate with platform teams currently running bloated observability stacks. ECI Research’s 2026 Application Development survey found that 61.7% of respondents have AI-driven anomaly detection as an observability strategy in place, indicating that the market is actively investing in smarter signal processing. Isovalent’s approach of pulling kernel-level telemetry through eBPF and feeding it into existing SIEM workflows (as Splunk does) is a technically sound way to get richer signals without proportionally higher resource cost.

Looking Ahead

The trajectory of this release points toward a future where Isovalent positions the Enterprise Platform less as a CNI vendor and more as the connectivity and security control plane for enterprise infrastructure at large. The GA of INV, the ExternalLB architecture, and Timescape’s evolution from a flow viewer into a policy authoring environment all point in the same direction: reducing the number of operational seams platform teams have to manage. The next logical step is deeper integration between the runtime security telemetry and the policy editing surface, so that process ancestry data observed in Timescape can directly inform TetragonNetworkPolicy without requiring manual translation.

For ITDMs evaluating this release, the decision frame is whether the platform’s unified operational model justifies consolidating away from point solutions in networking, load balancing, and runtime security. The economic argument is clearest for organizations in active VM-to-Kubernetes migration, where the alternative to a capability like INV is a combination of manual IP management, application changes, and extended migration timelines. The competitive pressure from upstream Cilium’s community releases will remain a factor, but Isovalent’s enterprise differentiation continues to center on the operational surface: structured policy governance, support for OpenShift, GitOps-aligned tooling in Timescape, and the kind of production validation that the Splunk case study represents.

Authors

  • Paul Nashawaty

    Paul Nashawaty, Practice Leader and Lead Principal Analyst, specializes in application modernization across build, release and operations. With a wealth of expertise in digital transformation initiatives spanning front-end and back-end systems, he also possesses comprehensive knowledge of the underlying infrastructure ecosystem crucial for supporting modernization endeavors. With over 25 years of experience, Paul has a proven track record in implementing effective go-to-market strategies, including the identification of new market channels, the growth and cultivation of partner ecosystems, and the successful execution of strategic plans resulting in positive business outcomes for his clients.

    View all posts
  • With over 15 years of hands-on experience in operations roles across legal, financial, and technology sectors, Sam Weston brings deep expertise in the systems that power modern enterprises such as ERP, CRM, HCM, CX, and beyond. Her career has spanned the full spectrum of enterprise applications, from optimizing business processes and managing platforms to leading digital transformation initiatives.

    Sam has transitioned her expertise into the analyst arena, focusing on enterprise applications and the evolving role they play in business productivity and transformation. She provides independent insights that bridge technology capabilities with business outcomes, helping organizations and vendors alike navigate a changing enterprise software landscape.

    View all posts