Understanding networking in Kubernetes

Kubernetes

Understanding networking in Kubernetes

by Peter Jausovec

Explore an in-depth analysis of Kubernetes networking, including container-to-container, pod-to-pod, pod-to-service, ingress, and egress communication. Understand the key roles of Container Network Interface (CNI), kubelet, kube-proxy, and learn about iptables and IPVS modes in kube-proxy.

Recent posts

Understanding networking in Kubernetes

Kubernetes

Understanding networking in Kubernetes

Explore an in-depth analysis of Kubernetes networking, including container-to-container, pod-to-pod, pod-to-service, ingress, and egress communication. Understand the key roles of Container Network Interface (CNI), kubelet, kube-proxy, and learn about iptables and IPVS modes in kube-proxy.

Using Istio ServiceEntry to configure external services

Service Mesh

Using Istio ServiceEntry to configure external services

Learn how to use the Istio ServiceEntry resource to represent external services, be it as IP addresses or host names.

How to apply Istio DestinationRule across the mesh?

Service Mesh

How to apply Istio DestinationRule across the mesh?

An interesting question came up today in Istio Slack where someone asked if and how one can apply DestinationRules globally to all workloads inside the cluster. The short answer is yes, and this article will explain how to do it.

How to configure rate limiter in Istio

Service Mesh

How to configure rate limiter in Istio

In this article you'll learn how rate limiting works in Envoy and how to configure a local rate limiter on the worloads inside the mesh, as well as at the edge of the mesh for the ingress and ingress gateways.

How to expose custom ports on Istio ingress gateway

Service Mesh

How to expose custom ports on Istio ingress gateway

This article explains how to expose custom ports on the Istio ingress and how can you use the same host name, but different port, and route the traffic to two (or more) Kubernetes services.

Top Cloud-Native Certifications and Learning Resources

General

Top Cloud-Native Certifications and Learning Resources

A quick overview of top cloud-native certifications - where to take them, how much the certifications cost and which learning resources to use.

Portainer - UI for managing Containers

Kubernetes

Portainer - UI for managing Containers

Portainer is an open-source, lightweight management UI that allows us to easily build and manage containers. This article explains how to install Portainer on a Kubernetes cluster and how to create a namespace and deploy an app.

Traefik Proxy 2.x and TLS 101

General

Traefik Proxy 2.x and TLS 101

The challenge that I'll explore today is that you have an HTTP service exposed through Traefik Proxy and you want to deal with the HTTPS burden (TLS termination), leaving your pristine service unspoiled by mundane technical details.

Kubernetes CLI (kubectl) tips you didn't know about

Kubernetes

Kubernetes CLI (kubectl) tips you didn't know about

A collection of more than 20 useful and practical Kubernetes CLI tips from the Kubernetes community.

Setting up SSL certificates with Istio Gateway

Service Mesh

Setting up SSL certificates with Istio Gateway

SSL certificates are a must these days. They helps protect the data being sent between the server and the client by encrypting it, which gives your website more credibility. In this blog post I will explore a couple of different ways you can obtain SSL certificates and configure the Istio Gateway to use them.

ArgoCD Best Practices You Should Know

Kubernetes

ArgoCD Best Practices You Should Know

This article contains a set of 10 best practices for Argo Workflows, ArgoCD, and Argo Rollouts.

Running AI On OCI Ampere A1 Instance

AI

Running AI On OCI Ampere A1 Instance

In this article, I will demonstrate easy steps of preparing and launching compute-intensive AI applications on OCI Ampere A1 shape to take advantage of the best-in-class AI inference performance of Ampere Altra processor and Ampere Inference Optimizer (AIO).

;