Enterprise Azure AKS microservices platform featuring Istio service mesh, multi-region failover, and comprehensive observability stack. Traffic flows from Azure Front Door through WAF and Application Gateway into a VNet-secured AKS cluster with three node pools: system, autoscaling application (5-20 nodes), and GPU-enabled compute. Istio manages east-west traffic across four namespaces—frontend, core-services, business-logic, and istio-system—while Dapr and Kafka handle event-driven processing to Azure Service Bus and Event Hubs. This architecture demonstrates Azure-native patterns for high availability with active-passive DR to West US2, GitOps via ArgoCD, and defense-in-depth security using Azure AD RBAC, Key Vault CSI, and Defender. Fork this diagram on Diagrams.so to customize node pool sizing, namespace boundaries, or adapt the Istio configuration for your workloads.