Explore an innovative approach to enforcing network policies for host processes using eBPF in this conference talk by Vinay Kulkarni from eBay. Learn about the limitations of current Kubernetes networking solutions and discover a groundbreaking method that leverages eBPF to identify and secure traffic from native host processes and pods using host networks. Understand how host process identities are transmitted on a per-packet basis and how this approach enhances network micro-segmentation. Gain insights into the scalability advantages of this solution and witness a demonstration showcasing its implementation. Delve into the world of efficient network policy enforcement and advanced security measures for cloud-native environments.
Enforcing Network Policies for Host Processes via eBPF
CNCF [Cloud Native Computing Foundation] via YouTube
Overview
Syllabus
No 'Soup' for You! Enforcing Network Policies for Host Processes via eBPF - Vinay Kulkarni, eBay
Taught by
CNCF [Cloud Native Computing Foundation]
Related Courses
-
Network Traffic Quality of Service Classes for Containers and Pods via eBPF/XDP
-
Lessons from Building Scalable Network Policy Enforcement with eBPF
-
Better Bandwidth Management with eBPF
-
Generating Security Policies with eBPF - Hands-on Walkthrough
-
Harnessing eBPF for Traffic Redirection in Istio Ambient Mode
-
Leveraging eBPF on OpenShift with Project Calico for Performance
