/docs/tasks/policy-enforcement/enabling-policy/index.md

[SataQiu]

Source File: /docs/tasks/policy-enforcement/enabling-policy/index.md Diff:

 diff --git a/content/en/docs/tasks/policy-enforcement/enabling-policy/index.md b/content/en/docs/tasks/policy-enforcement/enabling-policy/index.md
index ee0752c48..ecf3621eb 100644
--- a/content/en/docs/tasks/policy-enforcement/enabling-policy/index.md
+++ b/content/en/docs/tasks/policy-enforcement/enabling-policy/index.md
@@ -1,10 +1,24 @@
 ---
-title: Enabling Policy Enforcement
+title: Enabling Policy Enforcement (Deprecated)
 description: This task shows you how to enable Istio policy enforcement.
 weight: 1
 keywords: [policies]
 ---
 
+{{< warning >}}
+The mixer policy is deprecated in Istio 1.5 and not recommended for production usage.
+
+* Rate limiting: Consider using [Envoy native rate limiting](https://www.envoyproxy.io/docs/envoy/v1.13.0/intro/arch_overview/other_features/global_rate_limiting)
+instead of mixer rate limiting. Istio will add support for native rate limiting API through the Istio extensions API.
+
+* Control headers and routing: Consider using Envoy [`ext_authz` filter](https://www.envoyproxy.io/docs/envoy/v1.13.0/intro/arch_overview/security/ext_authz_filter),
+[`lua` filter](https://www.envoyproxy.io/docs/envoy/v1.13.0/configuration/http/http_filters/lua_filter),
+or write a filter using the [`Envoy-wasm` sandbox](https://github.com/envoyproxy/envoy-wasm/tree/master/test/extensions/filters/http/wasm/test_data).
+
+* Denials and White/Black Listing: Please use the [Authorization Policy](/docs/concepts/security/#authorization) for
+enforcing access control to a workload.
+{{< /warning >}}
+
 This task shows you how to enable Istio policy enforcement.
 
 ## At install time