Kong Mesh, built on the open-source project Kuma, supports a concept of zones and meshes to structure network connectivity and logical separation in deployments. A zone represents physical connectivity where data plane proxies (DPs) can communicate within the same zone but require Zone Ingress to communicate between zones, often used to model different cloud providers, regions, or data centers. A mesh provides logical boundaries for multi-tenant deployments, ensuring isolation of connectivity through separate policies, which restricts service communication across meshes without exiting and re-entering through control mechanisms. These concepts allow for flexible deployment architectures, where multiple meshes can exist within a zone to offer isolation for teams or applications, and a single mesh can span multiple zones for logical separation, enabling platform architects to model both physical and logical requirements independently while maintaining organizational, business, or security needs.