Envoy Proxy Crash Course - Architecture, L7 & L4 Proxying, HTTP/2, Enabling TLS 1.2/1.3 and More
Offered By: Hussein Nasser via YouTube
Course Description
Overview
Dive into a comprehensive video tutorial on Envoy Proxy, exploring its architecture, L7 and L4 proxying capabilities, HTTP/2 support, and TLS configuration. Learn about Envoy's core concepts, including downstream/upstream connections, clusters, listeners, network filters, connection pools, and threading model. Follow along with practical examples demonstrating Envoy as both a Layer 7 and Layer 4 proxy, configuring it to handle multiple backend services, load balancing, request blocking, and DNS record creation. Discover how to enable HTTPS using Let's Encrypt, implement HTTP/2, and configure TLS 1.2/1.3 exclusively. Conclude with an SSL Labs test to verify the security setup and gain a thorough understanding of this powerful open-source proxy and communication bus.
Syllabus
* What is Envoy?
* Current & Desired Architecture
* Envoy Architeture
* DownStream/Upstream
* Clusters
* Listeners
* Network Filters
* Connection Pools
* Threading Model
* Example
* Show the 4 apps
* Install Envoy Brew
* Envoy as a Layer 7 Proxy
* Proxy to all 4 backend NodeJS services
* Split load to multiple backends app1/app2
* Block certain requests /admin
* Envoy as a Layer 4 Proxy tcp router
* Create DNS record
* Enable HTTPS on Envoy lets encrypt
* Enable HTTP/2 on Envoy
* Disable 1.1/1.0 Enable TLS 1.2 and TLS 1.3 ONLY on Envoy
* SSL Labs test
* Summary
Taught by
Hussein Nasser
Related Courses
Introduction to NGINXUdemy SSL/TLS Operations
Udemy Securing the Future of TLS - What's New in TLS 1.3
LASCON via YouTube What's New in TLS 1.3
OWASP Foundation via YouTube Automated Analysis and Verification of TLS 1.3 - 0-RTT, Resumption and Delayed Authentication
IEEE via YouTube