In this video, we will explore Cilium’s, Service Mesh. We will start by defining a Service Mesh and then review an older and established Service Mesh provider Istio’s architecture. We will then dive into Cilium’s Service Mesh architecture to contrast the two and what advantages Cilium brings to the table. We will also discuss Cilium’s various new Mesh offering such as ingress (including TLS termination), L7 traffic management, and its future mTLS and encryption architecture. I will also cover an overview of mTLS in this video, discussing how it works, how it is implanted in sidecar-based Mesh providers like Istio, and how Cilium is envisioning it to be implanted in the future version of its Serve Mesh.
Demo scripts: github.com/gary-RR/myKZread_...
Timecodes
0:00 - Intro
2:27 - Istio's Service Mesh Architecture.
5:53 - Cilium's Long-Term Service Mesh Vision.
6:57 - Cilium Service Mesh and eBPF, and Overview of What Features were Implemented in V1.12.2
10:08 - Demo: Enable Service Mesh, Ingress Controller Config, and Run Sample Apps(Rest and GRPC)
33:23 - Ingress Visualization of The Previous Demo
38:11 - Ingress TLS Termination and Demo
49:02 - L7-Aware Traffic Management Features and Overview
50:39 - L7-Aware Traffic Management Demo(Weighted Load Balancing, Retry Policy,Path Translation,...)
1:13:35 - MTLS (Mutual TLS) Overview
1:20:15 - How MTLS is Implemented in Sidecar-Based Service Meshes (Istio in this case)
1:22:26 - Cilium's Vision for MTLS and Message Encryption
1:29:15 - Final Thoughts
My Other Videos:
► Cilium Kubernetes CNI Provider: Part 4, IP Routing Modes (Direct and Encapsulated)
• Cilium Kubernetes CNI ...
► Cilium Kubernetes CNI Provider, Part 3: Cluster Mesh
• Cilium Kubernetes CNI ...
►Cilium Kubernetes CNI Provider, Part 2: Security Policies and Observability Leveraging Hubble
• Cilium Kubernetes CNI ...
► Cilium Kubernetes CNI Provider, Part 1: Overview of eBPF and Cilium and the Installation Process • Cilium Kubernetes CNI ...
► What is VXLAN and How It is Used as an Overlay Network in Kubernetes?
• What is VXLAN and How ...
► Managing Linux Log-ins, Users, and Machines in Active Directory (AD): Part 2- Join Linux Machines to AD:
• Managing Linux Logins,...
► Managing Linux Log-ins, Users, and Machines in Active Directory (AD): Part 1- Setup AD:
• Managing Linux Logins,...
► Sharing Resources between Windows and Linux:
• Sharing Resources betw...
► Kubernetes Kube-proxy Modes: iptables and ipvs, Deep Dive:
• Kubernetes kube-proxy ...
►Kubernetes: Configuration as Data: Environment Variables, ConfigMaps, and Secrets:
• Kubernetes: Configurat...
►Configuring and Managing Storage in Kubernetes:
• Configuring and Managi...
► Istio Service Mesh - Securing Kubernetes Workloads:
• Istio Service Mesh - S...
► Istio Service Mesh - Intro
• Istio Service Mesh (si...
► Understanding Kubernetes Networking. Part 6: Calico Network Policies:
• Understanding Kubernet...
► Understanding Kubernetes Networking. Part 5: Intro to Kubernetes Network Policies:
• Understanding Kubernet...
► Understanding Kubernetes Networking. Part 4: Kubernetes Services:
• Kubernetes services - ...
► Understanding Kubernetes Networking Part 3: Calico Kubernetes CNI Provider in depth:
• Understanding Kubernet...
► Understanding Kubernetes Networking. Part 2: POD Network, CNI, and Flannel CNI: Plug-in: • Understanding Kubernet...
►Understanding Kubernetes Networking. Part 1: Container Networking: • Video
► Setup a Linux-Windows (Calico-based) Hybrid Kubernetes Cluster to Host .NET Containers:
• Setup a Linux-Windows ...
► A Docker and Kubernetes tutorial for beginners:
A Docker and Kubernetes tutorial for beginners. - KZread
► Setup a "Docker-less" Multi-node Kubernetes Cluster on Ubuntu Server:
• Setup a "Docker-less" ...
►Step by Step Instructions on Setting up Multi-Node Kubernetes Cluster on CentOS: • Step by Step Instructi...
►Setup and Configure CentOS Linux Server on A Windows 10 Hypervisor - KZread: • Setup and Configure Ce...
►Setup NAT (Network Address Translation) on Hyper-V: • Setup NAT (Network Add...
► Enable Nested Virtualization on Windows to run WSL 2 (Linux) and Hyper-V on a VM: • Enable Nested Virtuali...
►Setup a Multi-Node MicroK8S Cluster on Windows 10: • Setup a Multi Node Mic...
► Detailed Windows Terminal, (WSL 2), Linux, Docker, and Kubernetes Install Guide on Windows 10:
• Detailed Windows Termi...