logo
Dates

Author


Conferences

Tags

Sort by:  

Authors: Liz Rice, Richard Hartmann, Andy Allred
2023-04-19

tldr - powered by Generative AI

Cilium is a high-performance networking and security solution for Kubernetes that uses eBPF and is becoming the CNI of choice in the industry. The presentation covers updates, news, roadmap, and real-world use cases of Cilium.
  • Cilium is a popular networking and security solution for Kubernetes that uses eBPF and is becoming the CNI of choice in the industry.
  • Cilium provides high-performance load balancing, network policy, transparent encryption, and the ability to integrate multiple Kubernetes clusters and external workloads.
  • Hubble is the observability platform that gives visibility into individual network flows, aggregated metrics, service maps, and the ability to export all this metric information to various destinations.
  • Tetragon is the security observability subproject in Cilium that uses eBPF to instrument the kernel and give insight into security-relevant events.
  • Cilium is being adopted by all major cloud providers, including AWS, Azure, and Google Cloud.
  • The presentation includes real-world use cases of Cilium from Isovalent, Grafana Labs, and Eficode.
  • Grafana Labs has developed a new Grafana app that allows users to get all the power of Hubble directly from within Grafana.
Authors: Stig Telfer, Erez Cohen
2022-10-27

tldr - powered by Generative AI

The presentation discusses the different Kubernetes Container Network Interface (CNI) configurations for performance-intensive workloads, particularly in the fields of high-performance computing (HPC) and artificial intelligence (AI). The focus is on network throughput, latency, CPU offload capabilities, and GPU technologies like GPU direct and RDMA. The presentation includes a test case for genome sequencing and measures the sequencing performance for host networks and different CNIs.
  • Kubernetes networking is crucial for performance-intensive workloads in HPC and AI
  • Different CNIs offer various architectures and technologies that claim performance advantages
  • Network throughput, latency, CPU offload capabilities, and GPU technologies are essential considerations for these workloads
  • RDMA or remote direct memory access is a transport service that supports memory read and write semantics, kernel bypass, and hardware offloads
  • SDN acceleration offloads enable the highest performance, supporting the use of RDMA protocols
  • Calico performed particularly well in the test case for genome sequencing
  • With hardware-accelerated networking, performance of Kubernetes on bare metal hosts and in openstack VMS can be almost indistinguishable from performance on bare metal
Authors: Ed Warnicke, Lee Calcote
2022-10-27

tldr - powered by Generative AI

Cloud Native Networking is evolving with new, more powerful, more flexible ways to allow applications to communicate with each other. The talk aims to break down the vastness of Cloud Native Networking into a structure where the audience can understand the options and choices available to them as they try to solve their problems.
  • Cloud Native is an evolution of how to better meet application developers needs in a world that has moved beyond the mental model of the underlying infrastructure
  • Cloud Native Networking is vast, encompassing various projects such as CNI, CoreDNS, Envoy, gRPC, Linkerd, NATs, Network Service Mesh, BFE, Contour, Kuma, Service Mesh Interface, Chaos Mesh, Open Service Mesh, Emissary, k8gb, Service Mesh Performance, Submariner, Cilium, Meshery, Fab Edge, Istio, Nighthawk, Aeraki, and FabEdge
  • Minimal toil is one of the central maxims of Cloud Native, which includes the cognitive toil involved in understanding what to do
  • CNI is the SPI that plugins must meet in order to provide networking to a Kubernetes cluster
  • The base layer of what you get in intra-cluster networking is every pod can reach every other pod via L3 VIP
  • Isolation in Kubernetes is typically done with Network policies, which allow you to specify via selection certain pods that are going to be isolated
  • Services deal with service discovery and routing in the most basic sense
Authors: Mike Brown, Phil Estes, Maksym Pavlenko, Michael Zappa
2022-10-26

After five years as a CNCF project, containerd is still actively growing in contributors and maintainers who are busy working on interesting features and capabilities in the core and non-core containerd projects. During this project update from maintainers you'll learn about the latest work in containerd, including our recent addition of sandboxes, a handful of CRI and CNI improvements, as well as various improvements to the architecture and services that drive containerd's use by other projects and platforms. Outside of the core containerd project, our "non-core" projects have grown in number, including several Rust-based projects, new snapshotter implementations, and the increasingly popular client-focused project, nerdctl. Come join us for a fast-paced update on all these areas and to ask your containerd questions with the handful of on-site containerd maintainers.
Authors: Bill Mulligan
2022-05-20

tldr - powered by Generative AI

The talk discusses the composability of software in the cloud native ecosystem and how it compounds ideas, people, tools, and companies to create a virtuous life cycle. It emphasizes the reuse of existing community momentum and tools to avoid making the same investment twice.
  • Composability of software in the cloud native ecosystem compounds ideas, people, tools, and companies to create a virtuous life cycle
  • Existing community momentum and tools can be reused to avoid making the same investment twice
  • The ecosystem allows for innovation to move up the stack to tackle new challenges and solve new issues
  • The talk provides examples of how the ecosystem compounds ideas, people, tools, and companies
  • The talk emphasizes the importance of trust in the community and the value of a diverse contributor base
Authors: Daniel Mellado, Doug Smith
2022-05-20

tldr - powered by Generative AI

The presentation discusses the basics of CNI and provides tools and techniques for debugging CNI plugins in production environments.
  • CNI is the container networking interface that provides an API for networking plugins to manipulate pod sandboxes
  • Debugging CNI plugins in production requires a toolbox of tools and techniques
  • CNI tool is a useful tool for debugging CNI plugins
  • CNI 2.0 needs to address the need for better debugging capabilities
Authors: Tom Golway, Thomas Phelan
2021-10-15

tldr - powered by Generative AI

Using Data Processing Units (DPUs) with Kubernetes to offload software infrastructure
  • Enterprises are shifting their business innovation strategies to embrace the concept of being digitally aware
  • Application architectures are shifting towards a more disaggregated model that offers greater agility, supports elasticity, and provides greater control for software quality assurance
  • DPUs can be used to offload core Kubernetes software infrastructure components from the main CPU onto the processing units
  • DPUs can also offload network packet tracing functionality and service mesh components
  • Cloud-native infrastructure is required to support the optimal placement of workload, ensure performance, security, manageability, and accessibility to data
  • DPUs can help enable greater optimization of cloud-native application architecture while ensuring the usage of CPU cores and memory is maximized to support applications
Authors: Urvashi Mohnani, Peter Hunt, Mrunal Patel, Sascha Grunert
2021-10-14

CRI-O is a lightweight container runtime written exclusively for Kubernetes. In addition to being a standard component for deploying secure and stable Kubernetes clusters, CRI-O has the unique advantage of being able to tailor its behavior to the needs of the Kubernetes ecosystem. In this talk, Mrunal Patel, Urvashi Mohnani, Sascha Grunert and Peter Hunt, the maintainers of CRI-O, will provide an update about the latest feature developments, as well as live demonstrating typical real world use cases around them. In addition to a review of the basics of setting up and using CRI-O with Kubernetes, the talk will cover improvements around the handling of CNI resources, the ability to tailor container resources with workload types, and updates to the collection and broadcasting of stats and metrics. Join the CRI-O maintainers to learn more about how CRI-O works in action and why it’s the perfect choice for your Kubernetes cluster!