Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Container networking lightning talk featuring P...

Ed Harrison
August 06, 2015
Technology
0
91

Container networking lightning talk featuring Project Calico

This is the lightning talk I gave at the Kubernetes London launch party at Skill Matter on 6th August 2015.

Ed Harrison

August 06, 2015
Tweet

More Decks by Ed Harrison

See All by Ed Harrison
Simple, Scalable, Secure networking for Kubernetes
eepyaich
0
160
Securing micro-services, with Kubernetes, Mesos and Calico
eepyaich
0
360
Project Calico - an Introduction - May 2015
eepyaich
1
1.1k

Other Decks in Technology

See All in Technology
Zenn のウラガワ ~エンジニアのアウトプットを支える環境で Google Cloud が採用されているワケ~ #burikaigi #burikaigi_h
kongmingstrap
19
7.2k
The 5 Obstacles to Empowered Teams - Twice the Value in Half the Time
mdalmijn
0
160
今日からはじめるWSL実践入門
devops_vtj
0
110
Redshiftを中心としたAWSでのデータ基盤
mashiike
0
110
Bounded Context: Problem or Solution?
ewolff
1
180
20250129 Findy_テスト高活用化
dshirae
0
240
あなたはJVMの気持ちを理解できるか?
skrb
5
2k
プロダクト観点で考えるデータ基盤の育成戦略 / Growth Strategy of Data Analytics Platforms from a Product Perspective
yamamotoyuta
0
390
実践!OpenTelemetry
oracle4engineer
PRO
0
120
ソフトウェアアーキテクトのための意思決定術: Software Architecture and Decision-Making
snoozer05
PRO
18
4.2k
生成AIの利活用を加速させるための取り組み「prAIrie-dog」/ Shibuya_AI_1
visional_engineering_and_design
1
110
これからSREになる人と、これからもSREをやっていく人へ
masayoshi
3
2.2k

Featured

See All Featured
Large-scale JavaScript Application Architecture
addyosmani
510
110k
Practical Tips for Bootstrapping Information Extraction Pipelines
honnibal
PRO
11
910
Java REST API Framework Comparison - PWX 2021
mraible
28
8.4k
I Don’t Have Time: Getting Over the Fear to Launch Your Podcast
jcasabona
30
2.1k
Producing Creativity
orderedlist
PRO
343
39k
The Cost Of JavaScript in 2023
addyosmani
47
7.3k
Let's Do A Bunch of Simple Stuff to Make Websites Faster
chriscoyier
507
140k
Principles of Awesome APIs and How to Build Them.
keavy
126
17k
Sharpening the Axe: The Primacy of Toolmaking
bcantrill
39
1.9k
Raft: Consensus for Rubyists
vanstee
137
6.8k
Fireside Chat
paigeccino
34
3.2k
The Art of Programming - Codeland 2020
erikaheidi
53
13k

Transcript

  1. Oh No - Not another networking pitch! Ed Harrison (@eepyaich)

    Project Calico

  2. Most Container Networks

  3. Virtual L2 segments, implemented in software by virtual switch vSwitch

    vSwitch vSwitch Linux Linux Linux Encap / de- encap (& flooding!) Outer MAC Outer IP Outer UDP VXLAN VM MAC VM IP VM TCP/UDP VM Data Router services required to hop between tenants NAT required for public Internet access On/off-ramp required to get to NAS, etc. Virtual L2 segments, implemented in software by virtual switch

  4. That seems a bit complicated

  5. All I need is IP…

  6. … and security

  7. IP App IP App IP App IP App IP App

    IP App IP App IP App Router Router Router BGP BGP Hosts What if we built a data center like the internet?

  8. What if we built a data center like the internet?

    IP App IP App IP App IP App IP App IP App IP App IP App BGP BGP Compute Node Compute Node Containers Router Router Router Containers

  9. This is Project Calico Simple Scalable Open Thousands of servers,

    100k’s of workloads Don’t demand users to be networking experts Open source and open standards

  10. Project Calico – key Principles IP  Perform layer 3

    forwarding at each compute node  Leverage Linux kernel’s efficient IP forwarding engine – no separate vSwitch BGP  Distribute routes using proven Border Gateway Protocol, with route reflectors for scale  Program routes into Linux kernel on each host (and into physical fabric if required)  Separate policy decisions from routing information  Translate global policy into distributed firewall on each host, enabling tenant isolation & more

  11. Works with Kubernetes! http://www.projectcalico.org/calico-networking-for-kubernetes/

  12. More Information  Main project website: www.projectcalico.org  Github 

    https://github.com/projectcalico  Mailing list info:  http://www.projectcalico.org/contact/  Download & try it out  We welcome your feedback and contributions  Follow us @projectcalico or me @eepyaich