YoVDO

Kubernetes Network Policy Enforcement in XDP without IP Translation

Offered By: Linux Foundation via YouTube

Tags

Kubernetes Courses Network Security Courses Container Networking Courses Linux Networking Courses XDP Courses eBPF Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore Kubernetes network policy enforcement using XDP without IP translation in this conference talk by Hong Chang and Xiaoning Ding. Delve into the intricacies of Kubernetes networking, network policies, and policy enforcement techniques. Learn about IP-based and label-based policy approaches, examining their pros, cons, and limitations. Discover how to generate data, implement policy bitmaps, and utilize eBPF for efficient policy enforcement. Gain insights into traffic instrumentation and judgment methods for label-based policies. Conclude with a brief overview of additional technical details to enhance your understanding of advanced Kubernetes networking concepts.

Syllabus

Intro
Kubernetes Networking
Network Policies
Policy Enforcement By IPTables
Generate Data - IP based
Policy Bitmap
eBPF Data and Algorithm (Example)
IP Based Policy: Pros and Cons
Label Based Policy: Brief
Label Based Policy: Understand Data
Label Based Policy: Traffic Instrument
Label Based Policy: Traffic Judgement
Label Based Policy: Benefits and Limitation
A Glance of some Details


Taught by

Linux Foundation

Tags

Related Courses

Analyzing Postgres Performance Problems Using Perf and eBPF
Microsoft via YouTube Citus Con - An Event for Postgres - Americas Livestream
Microsoft via YouTube EBPF - The Next Power Tool of SREs
USENIX via YouTube Kernel Tracing With EBPF
media.ccc.de via YouTube Building Observability for 99% Developers
Docker via YouTube