tigera · ctauchen · May 8, 2026
@@ -1,5 +1,5 @@
 ---
-description: Add Maglev load balancing to a Kubernetes service.
+description: Switch a Kubernetes service to Maglev consistent-hash load balancing on the Calico Cloud eBPF data plane for stable backend selection in connected clusters.
 ---
 
 # Add Maglev load balancing to a service

@@ -1,5 +1,5 @@
 ---
-description: Configure Calico to advertise Kubernetes service cluster IPs and external IPs outside the cluster using BGP.
+description: Advertise Kubernetes service cluster IPs and external IPs out of a Calico Cloud connected cluster over BGP so upstream routers can reach them directly.
 ---
 
 # Advertise Kubernetes service IP addresses

@@ -1,5 +1,5 @@
 ---
-description: Configure BGP peering with nested clusters running on KubeVirt VMs
+description: Peer Calico Cloud nodes with BGP speakers inside KubeVirt VMs so nested clusters connected to Calico Cloud can announce routes from their workloads.
 ---
 
 # Configure BGP peering with nested clusters running on KubeVirt VMs

@@ -1,5 +1,5 @@
 ---
-description: Configure BGP peering with full mesh, node-specific peering, ToR, and/or Calico route reflectors.
+description: Set up BGP peering for Calico Cloud connected clusters — full mesh, per-node peers, top-of-rack switches, and route reflectors — with BGPPeer and BGPConfiguration resources.
 ---
 
 # Configure BGP peering

@@ -1,5 +1,5 @@
 ---
-description: Apply a custom BGP configuration
+description: Override the default BIRD BGP templates in a Calico Cloud connected cluster to access advanced BIRD features for proof-of-concept and special-case routing.
 ---
 
 # Custom BGP Configuration

@@ -1,5 +1,5 @@
 ---
-description: Configure a dual plane cluster for redundant connectivity between workloads.
+description: Deploy a dual ToR cluster connected to Calico Cloud so two independent connectivity planes provide redundancy between racks for on-premises clusters.
 ---
 
 # Deploy a dual ToR cluster

@@ -1,5 +1,5 @@
 ---
-description: Configure Calico networking options.
+description: Networking configuration tasks for Calico Cloud connected clusters — BGP, overlay encapsulation, MTU, multiple pod networks, dual ToR, IPVS, NAT, and QoS controls.
 hide_table_of_contents: true
 ---
 

@@ -1,5 +1,5 @@
 ---
-description: Mark a load balancer node for maintenance
+description: Mark a node in a Calico Cloud connected cluster for load balancer maintenance with an annotation so the eBPF data plane stops sending new service traffic to its pods.
 ---
 
 # Mark a load balancer node for maintenance

@@ -1,5 +1,5 @@
 ---
-description: Optimize network performance for workloads by configuring the MTU in Calico to best suit your underlying network.
+description: Tune the Calico Cloud MTU on the Installation resource so pod traffic matches the underlay, accounting for VXLAN, IP-in-IP, and WireGuard overhead.
 ---
 
 # Configure MTU to maximize network performance

@@ -1,5 +1,5 @@
 ---
-description: Configure a cluster with multiple Calico Cloud networks on each pod, and enforce security using Calico Cloud tiered network policy.
+description: Add extra Calico Cloud networks to each pod in a connected cluster with the Multus-CNI plugin, then control access with tiered network policy on every interface.
 ---
 
 # Configure multiple Calico Cloud networks on a pod

@@ -1,5 +1,5 @@
 ---
-description: Install NodeLocal DNSCache
+description: Run NodeLocal DNSCache alongside Calico Cloud in a connected cluster and write the network policy that lets pod DNS traffic reach the per-node cache.
 ---
 
 # Use NodeLocal DNSCache in your cluster

@@ -1,5 +1,5 @@
 ---
-description: Specify the MAC address for a pod instead of allowing the operating system to assign one
+description: Pin a chosen MAC address on a Kubernetes pod interface in a Calico Cloud connected cluster with the CNI plugin, for cases such as MAC-bound software licenses.
 ---
 
 # Use a specific MAC address for a pod

@@ -1,5 +1,5 @@
 ---
-description: Configure QoS (Quality of Service) Controls to limit ingress and/or egress bandwidth, packet rate and number of connections of Calico workloads.
+description: Apply Calico Cloud QoS controls to cap pod ingress and egress bandwidth, packet rate, and connection counts in a connected cluster, plus DiffServ marking on egress.
 ---
 
 # Configure QoS Controls

@@ -1,5 +1,5 @@
 ---
-description: Configure Calico to use IP in IP or VXLAN overlay networking so the underlying network doesn’t need to understand pod addresses.
+description: Choose VXLAN or IP-in-IP overlay encapsulation in a Calico Cloud connected cluster so pod traffic crosses underlay networks that don't route pod CIDRs natively.
 ---
 
 # Overlay networking

@@ -1,5 +1,5 @@
 ---
-description: Configure Calico Cloud networking to perform outbound NAT for connections from pods to outside of the cluster.
+description: Configure NAT outgoing on Calico Cloud IP pools in a connected cluster so pod traffic destined outside the cluster is source-NATed to the node IP.
 ---
 
 # Configure outgoing NAT

@@ -1,5 +1,5 @@
 ---
-description: Configure specific application traffic to exit the cluster through an egress gateway with a native AWS IP address.
+description: Route selected application traffic out of a Calico Cloud connected cluster through egress gateways with native AWS VPC subnet IPs.
 ---
 
 # Configure egress gateways, AWS

@@ -1,5 +1,5 @@
 ---
-description: Configure specific application traffic to exit the cluster through an egress gateway with a native Azure IP address.
+description: Route selected application traffic out of a Calico Cloud connected cluster through egress gateways with native Azure VNet IPs.
 ---
 
 # Configure egress gateways, Azure

@@ -1,5 +1,5 @@
 ---
-description: React to egress gateway maintenance windows and minimize the impact of egress gateway downtime on sensitive workloads
+description: Reduce egress gateway downtime impact on long-lived TCP sessions in Calico Cloud connected clusters by reading termination annotations and draining gracefully.
 ---
 
 # Optimize egress networking for workloads with long-lived TCP connections

@@ -1,5 +1,5 @@
 ---
-description: Configure specific application traffic to exit the cluster through an egress gateway.
+description: Send selected application traffic through Calico Cloud egress gateways on-premises so external firewalls see a predictable source IP for cluster workloads.
 redirect_from:
   - /compliance/egress-gateways
 ---

@@ -1,5 +1,5 @@
 ---
-description: Allows workloads from different namespaces of a Kubernetes cluster to egress onto different external networks that (may) have overlapping IPs with each other.
+description: Direct Calico Cloud egress gateway traffic onto multiple external networks with potentially overlapping IPs by associating gateways with named ExternalNetworks.
 ---
 
 # Configure egress traffic to multiple external networks

@@ -1,5 +1,5 @@
 ---
-description: Configure specific application traffic to exit the cluster through an egress gateway for additional security.
+description: Egress gateways in Calico Cloud — pin per-namespace or per-pod source IPs for outbound traffic, segment external networks, and integrate with cloud fabrics.
 hide_table_of_contents: true
 ---
 

@@ -1,5 +1,5 @@
 ---
-description: Use checklist to troubleshoot common problems.
+description: Troubleshooting guide for Calico Cloud egress gateways covering connection failures, source IP mismatches, BGP route propagation, and required pod metadata.
 ---
 
 # Troubleshoot egress gateways

@@ -1,5 +1,5 @@
 ---
-description: Calico's flexible networking options reduce the barriers to adopting a CaaS platform solution. Determine the best networking option for your implementation.
+description: Calico Cloud networking covers BGP, overlay encapsulation, IPAM, egress gateways, ingress gateways, and per-cluster training across connected clusters.
 ---
 
 import { DocCardLink, DocCardLinkLayout } from '/src/___new___/components';

@@ -1,5 +1,5 @@
 ---
-description: Understand what Calico Ingress Gateway is and how it works.
+description: Overview of Calico Ingress Gateway in Calico Cloud — a hardened Envoy Gateway build that brings the Kubernetes Gateway API to your connected clusters.
 title: Calico Ingress Gateway
 ---
 

@@ -1,5 +1,5 @@
 ---
-description: Create an ingress gateway to manage ingress traffic with the Kubernetes Gateway API.
+description: Deploy a Calico Ingress Gateway in a Calico Cloud connected cluster by applying GatewayAPI and Gateway resources tied to the Tigera-managed gateway class.
 ---
 
 # Create an ingress gateway

@@ -1,5 +1,5 @@
 ---
-description: Learn how to customize your ingress gateway.
+description: Tune the Calico Ingress Gateway in Calico Cloud via the GatewayAPI resource — multiple gateway classes, pod placement, container resources, and load balancer annotations.
 ---
 
 # Customizing your ingress gateway

@@ -1,5 +1,5 @@
 ---
-description: Tutorial for ingress gateways and canary deployment
+description: Step-by-step tutorial for running a canary rollout in Calico Cloud by splitting HTTPRoute weights across two backends behind an ingress gateway.
 title: "Tutorial: Canary deployment"
 ---
 

@@ -1,5 +1,5 @@
 ---
-description: Configure Calico Cloud to use specific IP pools for different topologies including zone, rack, or region.
+description: Bind Calico Cloud IP pools to zones, racks, or regions in a connected cluster with node selectors so pods get addresses that match the topology.
 ---
 
 # Assign IP addresses based on topology

@@ -1,5 +1,5 @@
 ---
-description: Expand or shrink the IP pool block size to efficiently manage IP pool addresses.
+description: Resize a Calico Cloud IPPool block — by creating a replacement pool and migrating workloads — to use IP space more efficiently across connected clusters.
 ---
 
 # Change IP pool block size

@@ -1,5 +1,5 @@
 ---
-description: Configure Calico Cloud to use Calico Cloud IPAM or host-local IPAM, and when to use one or the other.
+description: Pick between Calico Cloud IPAM and host-local IPAM, then configure pool selection, NAT outgoing, and per-namespace IP assignment in a connected cluster.
 ---
 
 # Get started with IP address management

@@ -1,5 +1,5 @@
 ---
-description: Calico IPAM is flexible and efficient. Learn how to interoperate with legacy firewalls using IP address ranges, advertise Kubernetes service IPs, and more.
+description: IP address management in Calico Cloud — IPPools, block sizes, IPv6 dual stack, service load balancer IPAM, topology-aware allocation, and pool migration.
 hide_table_of_contents: true
 ---
 

@@ -1,5 +1,5 @@
 ---
-description: Configure the default IP address ranges for operator installation.
+description: Set the default Calico Cloud IP pool CIDR, encapsulation, and NAT outgoing values during Tigera Operator installation through the Installation resource.
 ---
 
 # Configure default IP pools

@@ -1,5 +1,5 @@
 ---
-description: Calico IP autodetection ensures the correct IP address is used for routing. Learn how to customize it.
+description: Pick how Calico Cloud detects each node's primary IP — first-found, Kubernetes internal, interface regex, CIDR, or skip-interface — for reliable routing.
 ---
 
 # Configure IP autodetection

@@ -1,5 +1,5 @@
 ---
-description: Configure dual stack for workloads.
+description: Configure dual-stack pod networking in a Calico Cloud connected cluster by adding IPv6 IP pools, IPv6 autodetection, and matching CNI plugin settings.
 ---
 
 # Configure dual stack

@@ -1,5 +1,5 @@
 ---
-description: Restrict the IP address chosen for a pod to a specific range of IP addresses.
+description: Restrict pods to a defined IP range in a Calico Cloud connected cluster so legacy firewalls and appliances can recognise cluster workloads by source IP.
 ---
 
 # Restrict a pod to use an IP address in a specific range

@@ -1,5 +1,5 @@
 ---
-description: Migrate pods from one IP pool to another on a running cluster without network disruption.
+description: Move workloads from one Calico Cloud IPPool to another on a running connected cluster without disrupting existing pod connectivity.
 ---
 
 # Migrate from one IP pool to another

@@ -1,5 +1,5 @@
 ---
-description: LoadBalancer IP address management
+description: Use the Calico Cloud LoadBalancer controller to allocate IPs to Kubernetes Service type LoadBalancer from configured IPPool resources in a connected cluster.
 ---
 
 import Tabs from '@theme/Tabs';

@@ -1,5 +1,5 @@
 ---
-description: Specify the IP address for a pod instead of allowing Calico Cloud to automatically choose one.
+description: Pin a Kubernetes pod to a chosen address in a Calico Cloud connected cluster by setting a pod annotation that supplies the requested address.
 ---
 
 # Use a specific IP address with a pod

@@ -1,5 +1,5 @@
 ---
-description: Learn network behaviors of the Kubernetes network model.
+description: Reference primer for Kubernetes networking concepts that help when operating Calico Cloud — pod IPs, services, DNS, NAT outgoing, and dual stack.
 ---
 
 # Kubernetes network model

@@ -1,5 +1,5 @@
 ---
-description: Learn about networking layers, packets, IP addressing, and routing.
+description: Reference primer for networking fundamentals — OSI layers, packet anatomy, MTU, IP addressing, routing, overlays, DNS, and NAT — that underpin Calico Cloud.
 ---
 
 # Networking overview

@@ -1,5 +1,5 @@
 ---
-description: Learn the basics of Kubernetes networking and Calico Cloud networking.
+description: Networking training material for Calico Cloud — fundamentals of network layers, IP addressing, routing, and the Kubernetes network model.
 hide_table_of_contents: true
 ---
 

@@ -1,5 +1,5 @@
 ---
-description: Add Maglev load balancing to a Kubernetes service.
+description: Switch a Kubernetes service to Maglev consistent-hash load balancing on the Calico Enterprise eBPF data plane for stable backend selection across nodes.
 ---
 
 # Add Maglev load balancing to a service

@@ -1,5 +1,5 @@
 ---
-description: Configure Calico to advertise Kubernetes service cluster IPs and external IPs outside the cluster using BGP.
+description: Advertise Kubernetes service cluster IPs and external IPs out of the cluster over BGP with Calico Enterprise so upstream routers can reach them directly.
 ---
 
 # Advertise Kubernetes service IP addresses

@@ -1,5 +1,5 @@
 ---
-description: Configure BGP peering with nested clusters running on KubeVirt VMs
+description: Peer Calico Enterprise nodes with BGP speakers inside KubeVirt VMs so nested clusters can announce routes from their workloads upstream.
 ---
 
 # Configure BGP peering with nested clusters running on KubeVirt VMs

@@ -1,5 +1,5 @@
 ---
-description: Configure BGP peering with full mesh, node-specific peering, ToR, and/or Calico route reflectors.
+description: Set up BGP peering for Calico Enterprise — full mesh, per-node peers, top-of-rack switches, and route reflectors — using BGPPeer and BGPConfiguration resources.
 ---
 
 # Configure BGP peering

@@ -1,5 +1,5 @@
 ---
-description: Customize your BGP configuration.
+description: Override the default BIRD BGP templates for Calico Enterprise to access advanced BIRD features for proof-of-concept and special-case routing setups.
 ---
 
 # Custom BGP configuration

@@ -1,5 +1,5 @@
 ---
-description: Configure a dual plane cluster for redundant connectivity between workloads.
+description: Deploy a dual ToR cluster with Calico Enterprise so two independent connectivity planes provide redundancy between racks for on-premises clusters.
 ---
 
 # Deploy a dual ToR cluster

@@ -1,5 +1,5 @@
 ---
-description: Configure Calico networking options.
+description: Networking configuration tasks for Calico Enterprise — BGP, overlay encapsulation, MTU, multiple pod networks, dual ToR, IPVS, NAT, and QoS controls.
 hide_table_of_contents: true
 ---
 

@@ -1,5 +1,5 @@
 ---
-description: Mark a load balancer node for maintenance
+description: Mark a Calico Enterprise node for load balancer maintenance with an annotation so the eBPF data plane stops sending new service traffic to its pods.
 ---
 
 # Mark a load balancer node for maintenance

@@ -1,5 +1,5 @@
 ---
-description: Optimize network performance for workloads by configuring the MTU in Calico to best suit your underlying network.
+description: Tune the Calico Enterprise MTU on the Installation resource so pod traffic matches the underlay, accounting for VXLAN, IP-in-IP, and WireGuard overhead.
 ---
 
 # Configure MTU to maximize network performance

@@ -1,5 +1,5 @@
 ---
-description: Configure a cluster with multiple Calico Enterprise networks on each pod, and enforce security using Calico Enterprise tiered network policy.
+description: Add extra Calico Enterprise networks to each pod with the Multus-CNI plugin, then control access with tiered network policy on every interface.
 ---
 
 # Configure multiple Calico Enterprise networks on a pod

@@ -1,5 +1,5 @@
 ---
-description: Install NodeLocal DNSCache
+description: Run NodeLocal DNSCache alongside Calico Enterprise and write the network policy that lets pod DNS traffic reach the per-node cache.
 ---
 
 # Use NodeLocal DNSCache in your cluster

@@ -1,5 +1,5 @@
 ---
-description: Specify the MAC address for a pod instead of allowing the operating system to assign one
+description: Pin a chosen MAC address on a Kubernetes pod interface with the Calico Enterprise CNI plugin for cases such as MAC-bound software licenses.
 ---
 
 # Use a specific MAC address for a pod

@@ -1,5 +1,5 @@
 ---
-description: Configure QoS (Quality of Service) Controls to limit ingress and/or egress bandwidth, packet rate and number of connections of Calico workloads.
+description: Apply Calico Enterprise QoS controls to cap pod ingress and egress bandwidth, packet rate, and connection counts, plus DiffServ marking on egress.
 ---
 
 # Configure QoS Controls

@@ -1,5 +1,5 @@
 ---
-description: Configure Calico to use IP in IP or VXLAN overlay networking so the underlying network doesn’t need to understand pod addresses.
+description: Choose VXLAN or IP-in-IP overlay encapsulation in Calico Enterprise so pod traffic crosses underlay networks that don't route pod CIDRs natively.
 ---
 
 # Overlay networking

@@ -1,5 +1,5 @@
 ---
-description: Configure networking to perform outbound NAT for connections from pods to outside of the cluster.
+description: Configure NAT outgoing on Calico Enterprise IP pools so pod traffic destined outside the cluster is source-NATed to the node IP.
 ---
 
 # Configure outgoing NAT

@@ -1,5 +1,5 @@
 ---
-description: Learn about the different networking options Calico Enterprise supports so you can choose the best option for your needs.
+description: Compare networking choices in Calico Enterprise — overlay versus non-overlay, BGP, CNI, and IPAM — to land on the right configuration for your cluster.
 ---
 
 # Determine best networking option