Enforcing Network Policies for Host Processes via eBPF
CNCF [Cloud Native Computing Foundation] via YouTube
Overview
Explore an innovative approach to enforcing network policies for host processes using eBPF in this conference talk by Vinay Kulkarni from eBay. Learn about the limitations of current Kubernetes networking solutions and discover a groundbreaking method that leverages eBPF to identify and secure traffic from native host processes and pods using host networks. Understand how host process identities are transmitted on a per-packet basis and how this approach enhances network micro-segmentation. Gain insights into the scalability advantages of this solution and witness a demonstration showcasing its implementation. Delve into the world of efficient network policy enforcement and advanced security measures for cloud-native environments.
Syllabus
No 'Soup' for You! Enforcing Network Policies for Host Processes via eBPF - Vinay Kulkarni, eBay
Taught by
CNCF [Cloud Native Computing Foundation]