Drawing from the insights gained from attending Ceph Days 2022, Customers previous talks, and my personal experience with ServiceMesh deployments, I have observed that many organizations need help implementing a cluster-wide rate limiting and metrics visibility across their RGW and Buckets.

We discover a range of exciting use cases as we explore Envoy's capabilities in rate limiting, filtering, and collecting metrics on S3 activities executed against RGW. These include header-based filtering for multi-region deployments, additional OAuth token enforcement, and the ability to monitor user-to-bucket metrics without post-processing command outputs at ease.

To illustrate these capabilities, I will lead a hands-on lab demonstration, showcasing Envoy's frontend role for RGW on various use cases.

Rate limiting S3 requests per client
Rate limiting S3 requests per region
Rate limiting S3 requests per user/address/bucket (more granular level of control)
Utilize Prometheus for metrics collection and monitoring
Examine the use of geo-regional traffic flow scenarios in RGW
Examine the use of traffic stream replication for disaster recovery scenarios in RGW