Scaling Network Policy Enforcement Beyond the Cluster Boundary with Cilium
CNCF [Cloud Native Computing Foundation] via YouTube
Overview
Learn about cross-cluster network policy enforcement in a technical conference talk that explores how companies can effectively manage network policies across multiple Kubernetes clusters using Cilium. Dive into various solutions including Clustermesh, KVstoremesh, and DNS-based FQDN policy, with special attention to Datadog's custom KVstoremesh implementation for large-scale deployments. Understand the critical factors affecting scalability and enforcement timing, such as pod numbers, identities, and pod churn rates. Gain practical insights into selecting and implementing the right cross-cluster policy solution based on specific infrastructure requirements, while learning how to overcome common bottlenecks in multi-cluster environments. Master the complexities of extending Kubernetes native network policies beyond single cluster boundaries and discover actionable strategies for improving network policy management at scale.
Syllabus
Scaling Network Policy Enforcement Beyond the Cluster Boundary w... Hemanth Malla & Maxime Visonneau
Taught by
CNCF [Cloud Native Computing Foundation]