Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Container networking lightning talk featuring Project Calico

Ed Harrison
August 06, 2015
Technology
0
81

Container networking lightning talk featuring Project Calico

This is the lightning talk I gave at the Kubernetes London launch party at Skill Matter on 6th August 2015.

Ed Harrison

August 06, 2015
Tweet

More Decks by Ed Harrison

See All by Ed Harrison
Simple, Scalable, Secure networking for Kubernetes
eepyaich
0
160
Securing micro-services, with Kubernetes, Mesos and Calico
eepyaich
0
340
Project Calico - an Introduction - May 2015
eepyaich
1
1.1k

Other Decks in Technology

See All in Technology
SREとその組織類型
tatsuo48
9
1.6k
[PlatformCon 24] Platform Orchestrators: The Missing Middle of Internal Developer Platforms?
danielbryantuk
1
770
Terraformあれやこれ/terraform-this-and-that
emiki
8
1.3k
本当のAWS基礎
toru_kubota
0
350
プロデザ! BY リクルート vol.18_リクルートのリサーチ実践組織「リサーチブーストコミュニティ」
recruitengineers
PRO
3
260
AWS を使う上で知っておきたいオンプレミス知識/aws-on-premise-essentials
emiki
1
4.3k
Meta Quest 3 で動く桜マシマシ WebXR アプリを IBM Cloud Code Engine と Babylon.js で作った話
1ftseabass
PRO
0
110
Next'24 事例セッションの紹介とクラウド資格を活用したキャリア形成について語りMuscle
yasumuusan
1
410
Postman v10リリース後を振り返る / Looking back at Postman v10 after release
yokawasa
1
150
Java EE/Jakarta EEの現状と将来 ―クラウドネイティブ時代にJava EEは対応できるのか?―
takakiyo
1
120
MapLibreとAmazon Location Service
dayjournal
1
130
Delivering Millions of Messages within seconds @ Duolingo
pelelgrino
0
340

Featured

See All Featured
Templates, Plugins, & Blocks: Oh My! Creating the theme that thinks of everything
marktimemedia
18
1.7k
5 minutes of I Can Smell Your CMS
philhawksworth
199
19k
Testing 201, or: Great Expectations
jmmastey
27
6.3k
Typedesign – Prime Four
hannesfritz
36
2.1k
Building an army of robots
kneath
300
41k
Code Reviewing Like a Champion
maltzj
513
39k
Fantastic passwords and where to find them - at NoRuKo
philnash
36
2.5k
Adopting Sorbet at Scale
ufuk
67
8.6k
Embracing the Ebb and Flow
colly
79
4.1k
Large-scale JavaScript Application Architecture
addyosmani
503
110k
A designer walks into a library…
pauljervisheath
199
23k
Dealing with People You Can't Stand - Big Design 2015
cassininazir
356
22k

Transcript

  1. Oh No - Not another networking pitch! Ed Harrison (@eepyaich)

    Project Calico

  2. Most Container Networks

  3. Virtual L2 segments, implemented in software by virtual switch vSwitch

    vSwitch vSwitch Linux Linux Linux Encap / de- encap (& flooding!) Outer MAC Outer IP Outer UDP VXLAN VM MAC VM IP VM TCP/UDP VM Data Router services required to hop between tenants NAT required for public Internet access On/off-ramp required to get to NAS, etc. Virtual L2 segments, implemented in software by virtual switch

  4. That seems a bit complicated

  5. All I need is IP…

  6. … and security

  7. IP App IP App IP App IP App IP App

    IP App IP App IP App Router Router Router BGP BGP Hosts What if we built a data center like the internet?

  8. What if we built a data center like the internet?

    IP App IP App IP App IP App IP App IP App IP App IP App BGP BGP Compute Node Compute Node Containers Router Router Router Containers

  9. This is Project Calico Simple Scalable Open Thousands of servers,

    100k’s of workloads Don’t demand users to be networking experts Open source and open standards

  10. Project Calico – key Principles IP  Perform layer 3

    forwarding at each compute node  Leverage Linux kernel’s efficient IP forwarding engine – no separate vSwitch BGP  Distribute routes using proven Border Gateway Protocol, with route reflectors for scale  Program routes into Linux kernel on each host (and into physical fabric if required)  Separate policy decisions from routing information  Translate global policy into distributed firewall on each host, enabling tenant isolation & more

  11. Works with Kubernetes! http://www.projectcalico.org/calico-networking-for-kubernetes/

  12. More Information  Main project website: www.projectcalico.org  Github 

    https://github.com/projectcalico  Mailing list info:  http://www.projectcalico.org/contact/  Download & try it out  We welcome your feedback and contributions  Follow us @projectcalico or me @eepyaich