Skip to content

whiteducksoftware/cilium-next-level-k8s-networking

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

23 Commits
demos
demos
 
 
src
src
 
 
.editorconfig
.editorconfig
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 

Repository files navigation

Cilium Next Level K8s Networking

This repository contains the material for our Next-level Kubernetes networking ​with Cilium talk.

Prerequisites

# Create 2 AKS clusters with no CNI (BYOCNI)
cd ./src

# Login to Azure
az login
az account set --subscription <SUBSCRIPTION_ID>

# Execute Terraform
terraform init
terraform apply -auto-approve

# Install Cilium on AKS with BYOCNI
# Connect to cluster 01
az aks get-credentials --resource-group rg-cilium-demo --name aks-cilium-demo-01

# Install Gateway API CRDs
kubectl apply -f https://github.com/kubernetes-sigs/gateway-api/releases/download/v1.0.0/standard-install.yaml
kubectl apply -f https://raw.githubusercontent.com/kubernetes-sigs/gateway-api/main/config/crd/experimental/gateway.networking.k8s.io_tlsroutes.yaml

# Install Cert-Manager
helm upgrade \
  --install cert-manager jetstack/cert-manager \
  --namespace cert-manager \
  --create-namespace \
  --set "extraArgs={--feature-gates=ExperimentalGatewayAPISupport=true}" \
  --set installCRDs=true

# Install Cilium on cluster 01
cilium install \
    --datapath-mode aks-byocni \
    --set azure.resourceGroup="rg-cilium-demo" \
    --set cluster.id=1 \
    --set cluster.name=aks-cilium-demo-01 \
    --set ipam.operator.clusterPoolIPv4PodCIDRList='{10.10.0.0/16}' \
    --set hubble.relay.enabled=true \
    --set hubble.ui.enabled=true \
    --set kubeProxyReplacement=strict \
    --set gatewayAPI.enabled=true

# Connect to cluster 02
az aks get-credentials --resource-group rg-cilium-demo --name aks-cilium-demo-02

# Install Cilium on cluster 02
cilium install \
    --datapath-mode aks-byocni \
    --set azure.resourceGroup="rg-cilium-demo" \
    --set cluster.id=2 \
    --set cluster.name=aks-cilium-demo-02 \
    --set ipam.operator.clusterPoolIPv4PodCIDRList='{10.20.0.0/16}' \
    --set hubble.relay.enabled=true \
    --set hubble.ui.enabled=true \
    --set kubeProxyReplacement=strict

# Enable Cluster Mesh on each cluster
cilium clustermesh enable
cilium clustermesh status

# Connect the clusters, only one direction is required
# From cluster 01 to cluster 02 for example
cilium clustermesh connect --destination-context aks-cilium-demo-02

KCD Munich 2023

Slides

The slides are available here.

Demo: Hubble in action

Find all details here.

Demo: Canary Rollout with Cilium

Find all details here.

ContainerDays 2023

Slides

The slides are available here.

Demo: Cilium Identity & Hubble

Find all details here.

Demo: Cluster Mesh

Find all details here.

Demo: Service Mesh

Find all details here.

Continous Lifecycle / Container Conf 2023

Slides

The slides are available here.

Demo: Cilium Identity & Hubble

Find all details here.

Demo: Cluster Mesh

Find all details here.

Demo: Service Mesh

Find all details here.

About

This repository contains the material for our Next-level Kubernetes networking ​with Cilium talk.

Resources

Readme
Activity
Custom properties

Stars

1 star

Watchers

2 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages