Overview
Explore a conference talk that delves into the new Proxy Service, a network traffic abstraction in Kubernetes. Learn about the challenges of master-to-cluster communication and how SSH Tunnels were developed to support secure communications between the Kube API Server and cluster nodes. Discover the limitations of SSH Tunnels and how the proposed gRPC-based proxy service aims to simplify and enhance this process. Gain insights into the current implementation of SSH tunnels, the structure of the new proxy service, and its potential for future extensions, including auditing and multi-network support. Understand the technical details, reference implementation, direct connect capabilities, and network context considerations. Explore future possibilities and learn how to contribute to this evolving Kubernetes feature.
Syllabus
Intro
SSH Tunnels
API Server
Admission Webhooks
Proxy Service Example
Technical Details
Reference Implementation
Direct Connect
Network Context
Future Possibilities
Contribute
Taught by
Linux Foundation