Explore an innovative approach to addressing Istio's ambient mesh challenges in this 20-minute conference talk from KubeCon + CloudNativeCon. Learn about a groundbreaking solution for expanding Container Network Interface (CNI) support and enabling Kubernetes network policy enforcement within the ambient mesh. Discover how traffic redirection from pods to Ztunnel within the pod's network namespace can seamlessly integrate Istio-CNI, Ztunnel, and application pods without requiring pod restarts during ambient mesh enrollment. Gain insights into potential improvements, tradeoffs, and considerations regarding threat models, system resources, network policies, and bypassability. Enhance your understanding of cloud native computing and stay up-to-date with the latest advancements in Istio's ambient mesh technology.
Empowering Istio Ambient with Any Kubernetes CNIs
CNCF [Cloud Native Computing Foundation] via YouTube
Overview
Syllabus
Empowering Istio Ambient with Any Kubernetes CNIs - Benjamin Leggett & Yuval Kohavi, Solo.io
Taught by
CNCF [Cloud Native Computing Foundation]
Related Courses
-
Beyond the Basics: Istio and IBM Cloud Kubernetes Service
-
A Packet Eye View of the Istio Ambient Mesh
-
Istio Ambient Service Mesh Made Simple
-
Redefining Service Mesh: Leveraging EBPF to Optimize Istio Ambient Architecture and Performance
-
Extending Sidecarless Applications with Wasm in Istio Ambient Mesh
-
A Guided Tour of Istio Ambient Mesh
