---Sidecar Deployment Architecture for MCP | Panovista

Deploying Panovista as a Sidecar

When routing real-time AI agent traffic via the Model Context Protocol (MCP), introducing network hops to a centralized security appliance adds unacceptable latency. Panovista solves this by deploying as a Sidecar Container directly alongside your core AI application.

By running in the same network namespace as your AI agent, Panovista acts as a localized, ultra-fast loopback proxy.


Why the Sidecar Pattern?


Kubernetes (EKS/GKE) Integration

In a Kubernetes environment, Panovista deploys via a standard Pod configuration. Your primary agent container communicates with Panovista over 127.0.0.1, while Panovista handles the external egress routing and enforces the schema rules.

# Example snippet of a Panovista Sidecar in a Pod
apiVersion: v1
kind: Pod
metadata:
  name: internal-sales-agent
spec:
  containers:
  - name: ai-agent-app
    image: my-internal-agent:v2
    env:
      - name: MCP_ENDPOINT
        value: "[http://127.0.0.1:443](http://127.0.0.1:443)" # Routes to Panovista
  - name: panovista-proxy
    image: panovista/proxy:latest
    ports:
      - containerPort: 443
      ```