Fully self-hosted Kubernetes
Lokomotive is the only Kubernetes distribution to run all infrastructure components—including all Kubernetes components—in Kubernetes itself.
Driving Kubernetes Forward
A self-hosted, security-centric and composable Kubernetes distribution for bare-metal and cloud platforms
Enterprise Support
What is Lokomotive?
Lokomotive is a self-hosted, upstream Kubernetes distribution with strong security defaults and frictionless updates.
Comes with a fully-supported collection of open source infrastructure technologies.
Keep your entire cluster up to date with Lokomotive's seamless in-place updates.
Built-in security and application debugging tools backed by the Kinvolk Labs team.
Frictionless Kubernetes
By running Kubernetes in Kubernetes, Lokomotive is able to leverage a unified update facility for the entire cluster, including Kubernetes components.
In-place update support
Alongside standard update mechanisms, Lokomotive also supports in-place updates, perfect for bare-metal and large storage nodes.
Enforced update policies
Lokomotive automatically enforces the upstream Kubernetes version skew policy to ensure continuous uptime during updates.
Frictionless Kubernetes
By running Kubernetes in Kubernetes, Lokomotive is able to leverage a unified update facility for the entire cluster, including Kubernetes components.
In-place update support
Alongside standard update mechanisms, Lokomotive also supports in-place updates, perfect for bare-metal and large storage nodes.
Enforced update policies
Lokomotive automatically enforces the upstream Kubernetes version skew policy to ensure continuous uptime during updates.
Security as a forethought
Lokomotive takes the guess work out of applying security best practices by shipping with pre-configured security tools and policies.
Security hardened
Lokomotive is backed by the Kinvolk Labs pentesting team who apply their experience to make sure Lokomotive is as secure as possible and evaluate new hardening measures regularly.
Built-in security tooling
Kinvolk's expert team has handpicked and configured the best-in-class open source security tooling. Benefit from Kinvolk's on-going support and continued enhancements.
Rapid security updates
A key aspect of a secure system is running updated software. With Lokomotive's frictionless update mechanism, ensuring your cluster is up to date becomes almost effortless.
Security hardened
Lokomotive is backed by the Kinvolk Labs pentesting team who apply their experience to make sure Lokomotive is as secure as possible and evaluate new hardening measures regularly.
Built-in security tooling
Kinvolk's expert team has handpicked and configured the best-in-class open source security tooling. Benefit from Kinvolk's on-going support and continued enhancements.
Rapid security updates
A key aspect of a secure system is running updated software. With Lokomotive's frictionless update mechanism, ensuring your cluster is up to date becomes almost effortless.
Composable Kubernetes
Lokomotive can run as a full-stack Kubernetes cluster atop Flatcar Container Linux or on managed Kubernetes offerings.
The layers of Lokomotive
Lokomotive consists of 3 well-defined layers; Flatcar Container Linux as the OS, vanilla upstream Kubernetes, and Lokomotive infrastructure components for all your clustering needs.
Full-stack Kubernetes
Lokomotive is not just upstream Kubernetes, it also includes Flatcar Container Linux and a full suite of infrastructure components integrated and configured for easy of operations.
Enhancing hyperscalers
Deploy Lokomotive infrastructure components on a managed Kubernetes service from a hyperscale cloud and reap the benefits of Lokomotive's curated configuration and security.
The layers of Lokomotive
Lokomotive consists of 3 well-defined layers; Flatcar Container Linux as the OS, vanilla upstream Kubernetes, and Lokomotive infrastructure components for all your clustering needs.
Full-stack Kubernetes
Lokomotive is not just upstream Kubernetes, it also includes Flatcar Container Linux and a full suite of infrastructure components integrated and configured for easy of operations.
Enhancing hyperscalers
Deploy Lokomotive infrastructure components on a managed Kubernetes service from a hyperscale cloud and reap the benefits of Lokomotive's curated configuration and security.
The Lokomotive User Experience
The Lokomotive User Experience
- Batteries included, fully configured default install
- Massively simplified configuration
lokoctlfor managing clusters, components and updates
Find out more »
The Lokomotive Layers
Enterprise Support and more
Standard (business hours) and Premium (24x7) support.
Access to Kinvolk's customer portal for KB and ticket management.
Assigned customer success engineer, backed up by a global engineering team.
What folks are saying about us!
CoreOS strives for the highest technical standards in our open source projects, and the developers at Kinvolk have consistently met and surpassed these standards. The expansive technical depth of the Kinvolk team has helped ensure that rkt is optimally integrated with the core Linux technologies rkt relies on, such as systemd and the kernel itself.
If you're looking for a top-tier team of seasoned open source contributors in the container space (from Linux kernel to Docker to Kubernetes and everything in between), hire Kinvolk. Each time I visited their office in Berlin, I left smarter than I walked in.
We are glad we chose to work with Kinvolk. They delivered what they promised, to a tight schedule. Kinvolk’s Lokomotive sets us up with a flexible multi-cloud architecture for the future, enabling us to cost-effectively deliver superior solutions to our customers.
Resource Center
Discover your infrastructure's potential
Case StudiesFind out how our clients use Lokomotive in their organizations
Product DocsLearn about Lokomotive
