Kubernetes Network Policy Enforcement in XDP without IP Translation
Offered By: Linux Foundation via YouTube
Course Description
Overview
Explore Kubernetes network policy enforcement using XDP without IP translation in this conference talk by Hong Chang and Xiaoning Ding. Delve into the intricacies of Kubernetes networking, network policies, and policy enforcement techniques. Learn about IP-based and label-based policy approaches, examining their pros, cons, and limitations. Discover how to generate data, implement policy bitmaps, and utilize eBPF for efficient policy enforcement. Gain insights into traffic instrumentation and judgment methods for label-based policies. Conclude with a brief overview of additional technical details to enhance your understanding of advanced Kubernetes networking concepts.
Syllabus
Intro
Kubernetes Networking
Network Policies
Policy Enforcement By IPTables
Generate Data - IP based
Policy Bitmap
eBPF Data and Algorithm (Example)
IP Based Policy: Pros and Cons
Label Based Policy: Brief
Label Based Policy: Understand Data
Label Based Policy: Traffic Instrument
Label Based Policy: Traffic Judgement
Label Based Policy: Benefits and Limitation
A Glance of some Details
Taught by
Linux Foundation
Tags
Related Courses
An Introduction to Computer NetworksStanford University via Independent Computer Networks
University of Washington via Coursera Computer Networking
Georgia Institute of Technology via Udacity Cybersecurity and Its Ten Domains
University System of Georgia via Coursera Model Building and Validation
AT&T via Udacity