Full Mesh Encryption in Kubernetes with WireGuard and Calico
CNCF [Cloud Native Computing Foundation] via YouTube
Overview
Explore full mesh encryption in Kubernetes using WireGuard and Calico in this informative conference talk. Discover the importance of encrypting data-in-transit for compliance and zero-trust models in Kubernetes environments. Learn why WireGuard is an excellent choice for this task and how it integrates with Project Calico to create a fully encrypted host-to-host mesh beneath application workloads. Delve into the implementation details of this lightweight, fast, and scalable VPN solution. Gain insights into Calico's architecture, the integration of Calico and WireGuard, and their performance on AKS. Understand the ease of configuration and future developments in this field. The presentation concludes with a Q&A session to address any remaining questions.
Syllabus
Intro
Agenda
Encryption in Kubernetes
Service Mesh
No Service Mesh
Calico
Calico Architecture
WireGuard
Calico and WireGuard
Summary
WireGuard AKS
Ease of Configuration
Performance
Future work
QA
Taught by
CNCF [Cloud Native Computing Foundation]