Forwarded from CatOps
Хорошее видео для выходного дня про BPF и том, как Cilium использует эту технологию для управления сетью в Kubernetes
#kubernetes #networking #linux
#kubernetes #networking #linux
YouTube
Cilium - Bringing the BPF Revolution to Kubernetes Networking and Security
https://media.ccc.de/v/ASG2018-221-cilium_-_bringing_the_bpf_revolution_to_kubernetes_networking_and_security
Thomas Graf
https://cfp.all-systems-go.io/en/ASG2018/public/events/221
Thomas Graf
https://cfp.all-systems-go.io/en/ASG2018/public/events/221
Forwarded from CatOps
Бенчмарк сетевых плагинов Kubernetes по четырём парамтерам: простота установки и конфигурации, сесурити, производительность и потребление ресурсов.
В забеге участвовали:
- Calico v3.3
- Canal v3.3 (which is in fact Flannel for network + Calico for firewalling)
- Cilium 1.3.0
- Flannel 0.10.0
- Kube-router 0.2.1
- Romana 2.0.2
- WeaveNet 2.4.1
#kubernetes #networking
В забеге участвовали:
- Calico v3.3
- Canal v3.3 (which is in fact Flannel for network + Calico for firewalling)
- Cilium 1.3.0
- Flannel 0.10.0
- Kube-router 0.2.1
- Romana 2.0.2
- WeaveNet 2.4.1
#kubernetes #networking
ITNEXT
Benchmark results of Kubernetes network plugins (CNI) over 10Gbit/s network
Kubernetes is a great orchestator for containers. But it does not manage network for Pod-to-Pod communication. This is the mission of…
Forwarded from CatOps
wizard zines
wizard zines: Networking! ACK!
Forwarded from CatOps
Cайт-сравнение разных CDN на основании тестов в реальном времени от PerfOps.
+ бонусом сравнение производительности DNS провайдеров от них же
#networking
+ бонусом сравнение производительности DNS провайдеров от них же
#networking
Cdnperf
CDNPerf - CDN Performance and Uptime monitoring, comparison and analytics - RUM data
With CDNPerf you can find the fastest CDN provider in the world or just your country. Get the top CDN by using our data for free.
Forwarded from CatOps
Вышел Cilium 1.6:
- KVStore free operation
- 100% Kube-proxy replacement
- Socket-based load-balancing
- Policy scalability improvements
- Generic CNI chaining
- Native AWS ENI mode
#kubernetes #networking
- KVStore free operation
- 100% Kube-proxy replacement
- Socket-based load-balancing
- Policy scalability improvements
- Generic CNI chaining
- Native AWS ENI mode
#kubernetes #networking
cilium.io
Cilium 1.6: KVstore-free operation, 100% kube-proxy replacement, Socket-based load-balancing, Generic CNI Chaining, Native AWS…
We are excited to announce the Cilium 1.6 release. A total of 1408 commits have been contributed by the community with many developer...
Forwarded from CatOps
Cilium описывают свою multi-master фичу или как они это называют - ClusterMesh
Должно быть интересно тем, кто собирается строить файловер между разными провайдерами
#kubernetes #networking
Должно быть интересно тем, кто собирается строить файловер между разными провайдерами
#kubernetes #networking
cilium.io
Deep Dive into Cilium Multi-cluster
This is a deep dive into ClusterMesh, Cilium's multi-cluster implementation....
Forwarded from CatOps
Рассказ о том, как Monzo контролируют исходящий трафик
Примеры из Kubernetes, потому что у них Kubernetes.
Вообще, Monzo пишут хорошие статьи в своём блоге
#kubernetes #networking #security
Примеры из Kubernetes, потому что у них Kubernetes.
Вообще, Monzo пишут хорошие статьи в своём блоге
#kubernetes #networking #security
Forwarded from CatOps
Деконструкция сети в Kubernetes. Люблю такие статьи: у человека случилось проблема, он её решил и поделился тем, что узнал нового.
В продолжение о сетях k8s пару презентаций от Tim Hockin
- Kubernetes and Networks - why is this so dang hard?
- Bringing Traffic Into Your Kubernetes Cluster
#kubernetes #networking
В продолжение о сетях k8s пару презентаций от Tim Hockin
- Kubernetes and Networks - why is this so dang hard?
- Bringing Traffic Into Your Kubernetes Cluster
#kubernetes #networking
eevans.co
Deconstructing Kubernetes Networking
How to go down a networking rabbithole and end up where you started
Forwarded from CatOps
История о AWS NLB и TCP Keepalive timeouts.
О том, как бороть "тихое" закрытие соединений, если вы используете AWS NLB.
Будет полезно, если у ваших клиентов нет настроенного ретрая, а также тем, кто строит сервис-меши своими силами
#networking #aws
О том, как бороть "тихое" закрытие соединений, если вы используете AWS NLB.
Будет полезно, если у ваших клиентов нет настроенного ретрая, а также тем, кто строит сервис-меши своими силами
#networking #aws
Medium
Lessons from AWS NLB Timeouts
Jonathan Lynch, Alan Ning
Forwarded from CatOps
История о AWS NLB и TCP Keepalive timeouts.
О том, как бороть "тихое" закрытие соединений, если вы используете AWS NLB.
Будет полезно, если у ваших клиентов нет настроенного ретрая, а также тем, кто строит сервис-меши своими силами
#networking #aws
О том, как бороть "тихое" закрытие соединений, если вы используете AWS NLB.
Будет полезно, если у ваших клиентов нет настроенного ретрая, а также тем, кто строит сервис-меши своими силами
#networking #aws
Medium
Lessons from AWS NLB Timeouts
Jonathan Lynch, Alan Ning
Forwarded from CatOps
Interesting thread about Nginx Service Mesh by Daniele Polencic
So yeah, Nginx had a service mesh too!
- Read on Threadapp
- Read on Twitter
I'm not sure, if anybody gonna use it for real, though
#kubernetes #nginx #networking
So yeah, Nginx had a service mesh too!
- Read on Threadapp
- Read on Twitter
I'm not sure, if anybody gonna use it for real, though
#kubernetes #nginx #networking
Threadreaderapp
Thread by @danielepolencic on Thread Reader App
Thread by @danielepolencic: THREAD Nginx has a service mesh too. Is it any good? Let's find out. 1/ Most service meshes use Envoy as a proxy and for good reasons: 1. It's fully open-source 2. It...
Forwarded from CatOps
QUIC - a planned successor of TCP - is now formalized as RFC 9000.
QUIC was initially developed at Google, but later adopted by IETF. It provides some TCP-like features on top of UDP in order to overcome latency and packet loss, especially in the last mile.
HTTP/3, which is built on top of QUIC is not formalized yet, but it's following closely behind. So, it will be likely released soon as well.
So, with HTTP/3 around the corner, have you already switched to HTTP/2?
#networking #quic
QUIC was initially developed at Google, but later adopted by IETF. It provides some TCP-like features on top of UDP in order to overcome latency and packet loss, especially in the last mile.
HTTP/3, which is built on top of QUIC is not formalized yet, but it's following closely behind. So, it will be likely released soon as well.
So, with HTTP/3 around the corner, have you already switched to HTTP/2?
#networking #quic
Fastly
QUIC is now RFC 9000
QUIC version 1 is officially formalized, and QUIC deployments will now move away from using temporary draft versions to the newly minted version 1.
Forwarded from CatOps
Consul Service Mesh for Amazon ECS is now in the Tech Preview.
This means that you can deploy Consul Service Mesh on Fargate type ECS using official Terraform modules. However, only setups for Dev are supported right now, i.e. the official module deploys only a single dev/testing Consul task for now. This will be changed before Consul Service Mesh for AWS ECS hits GA.
#consul #hashicorp #aws #networking
This means that you can deploy Consul Service Mesh on Fargate type ECS using official Terraform modules. However, only setups for Dev are supported right now, i.e. the official module deploys only a single dev/testing Consul task for now. This will be changed before Consul Service Mesh for AWS ECS hits GA.
#consul #hashicorp #aws #networking
HashiCorp
Announcing Tech Preview of Consul Service Mesh for Amazon ECS
AWS users may now select Consul as their service mesh for ECS deployments.