$30 off During Our Annual Pro Sale. View Details »

ricc-20210826

Avatar for Tomoki Sugiura Tomoki Sugiura
August 26, 2021
Programming
0
550

 ricc-20210826

Avatar for Tomoki Sugiura

Tomoki Sugiura

August 26, 2021
Tweet

More Decks by Tomoki Sugiura

See All by Tomoki Sugiura
CiliumによるKubernetes Network Policyの実現 CNDT2021
Avatar for Tomoki Sugiura shanpu
0
1.3k
naist colloquium-B 2
Avatar for Tomoki Sugiura shanpu
0
230
IOT53
Avatar for Tomoki Sugiura shanpu
0
100
RICC-PIoT Workshop 2021
Avatar for Tomoki Sugiura shanpu
0
660
ricc-nii-2020
Avatar for Tomoki Sugiura shanpu
0
140
Cloud Native Kansai #05 LT4
Avatar for Tomoki Sugiura shanpu
1
1k
gcpug-kyoto#2-LT1
Avatar for Tomoki Sugiura shanpu
0
700
kubernetes-seminar
Avatar for Tomoki Sugiura shanpu
0
190
KansaiLT2
Avatar for Tomoki Sugiura shanpu
0
270

Other Decks in Programming

See All in Programming
DSPy Meetup Tokyo #1 - はじめてのDSPy
Avatar for Masahiro Nishimi masahiro_nishimi
1
160
S3 VectorsとStrands Agentsを利用したAgentic RAGシステムの構築
Avatar for とすり tosuri13
6
300
AIエージェントを活かすPM術 AI駆動開発の現場から
Avatar for gyuta gyuta
0
370
非同期処理の迷宮を抜ける: 初学者がつまづく構造的な原因
Avatar for PADAone pd1xx
1
700
AIコーディングエージェント(skywork)
Avatar for kondai kondai24
0
150
新卒エンジニアのプルリクエスト with AI駆動
Avatar for Yuta Fukunaga fukunaga2025
0
200
Developing static sites with Ruby
Avatar for Masafumi Okura okuramasafumi
0
260
dotfiles 式年遷宮 令和最新版
Avatar for masawada masawada
1
750
Navigation 3: 적응형 UI를 위한 앱 탐색
Avatar for Sungyong An fornewid
1
260
20251127_ぼっちのための懇親会対策会議
Avatar for kokamoto01 kokamoto01_metaps
2
420
ZOZOにおけるAI活用の現在 ~モバイルアプリ開発でのAI活用状況と事例~
Avatar for ZOZO Developers zozotech
PRO
8
5.5k
AWS CDKの推しポイントN選
Avatar for アキキー akihisaikeda
1
240

Featured

See All Featured
Rails Girls Zürich Keynote
Avatar for Gregor Martynus gr2m
95
14k
Balancing Empowerment & Direction
Avatar for Lara Hogan lara
5
790
Fireside Chat
Avatar for paigeccino paigeccino
41
3.7k
BBQ
Avatar for Matthew Crist matthewcrist
89
9.9k
How GitHub (no longer) Works
Avatar for Zach Holman holman
316
140k
Into the Great Unknown - MozCon
Avatar for Noah Learner thekraken
40
2.2k
Why Our Code Smells
Avatar for Brandon Keepers bkeepers
PRO
340
57k
XXLCSS - How to scale CSS and keep your sanity
Avatar for Zaharenia Atzitzikaki sugarenia
249
1.3M
A Tale of Four Properties
Avatar for Chris Coyier chriscoyier
162
23k
Put a Button on it: Removing Barriers to Going Fast.
Avatar for kastner kastner
60
4.1k
Chrome DevTools: State of the Union 2024 - Debugging React & Beyond
Avatar for Addy Osmani addyosmani
9
1k
How to train your dragon (web standard)
Avatar for Monica Dinculescu notwaldorf
97
6.4k

Transcript

  1. Cilium Explicit Allow- Listing for ICMP GSoC 2021 3*$$೥౓ୈҰճݚڀ߹॓ /"*454%-BC.

    ਿӜஐج

  2. ֓ཁ 2 ˓ (PPHMF4VNNFSPG$PEFʢ(4P$ʣʹࢀՃ͠·ͨ͠ ˓ $JMJVNͱ͍͏ωοτϫʔΫ044ͷػೳ௥ՃΛ୲౰ ˔ *$.1ύέοτͷϑΟϧλʔػೳ ˓ ͜ͷൃදͰ͸$JMJVN΍ػೳͷ࣮૷ʹ͍ͭͯ঺հ

  3. Google Summer of CodeʢGSoCʣ 3 ˓ (PPHMFओ࠵ͷֶੜͷ044ߩݙΛࢧԉ͢ΔϓϩάϥϜ ˓ ֶੜ͸ϦετΞοϓ͞Εͨ044ʹରͯ͠ػೳ௥Ճͷ ϓϩϙʔβϧΛఏग़

    ˓ ࠾୒͞ΕͨΒʙ݄ͷिؒͰ࣮૷ ˔ ϝϯλʔ͋Γ ˓ தؒ৹ࠪɼ࠷ऴ৹ࠪͦΕͧΕ௨Δ͝ͱʹใ঑ۚ ˓ $JMJVNωοτϫʔΫϙϦγʔͷ*$.1ରԠ

  4. Cilium 4 ˓ ,VCFSOFUFTͷ$/*ϓϥάΠϯͷҰछ ˔ IUUQTHJUIVCDPNDJMJVNDJMJVN ˓ ॲཧج൫ʹF#1'Λ࢖༻ ˓ $/*ϓϥάΠϯք۾ͷதͰΞπ͍ଘࡏ

    ˔ (,&EBUBQMBOFWʹ࠾༻ ˔ $/$'JODVCBUJOHQSPKFDU΁ొ࿥ਃ੥த ˗ IUUQTHJUIVCDPNDODGUPDQVMM ˔ ೔ຊͰ͸͋·Γ࢖ΘΕͯͳ͍ ҹ৅ 🥺

  5. Kubernetes 5 ˓ ίϯςφΦʔέετϨʔγϣϯπʔϧͷσϑΝΫτ ˓ ෳ਺ͷίϯςφɺෳ਺ͷϊʔυΛ؅ཧ ˔ εέδϡʔϦϯά ˔ ࣗಈ෮چ

    ˔ ϘϦϡʔϜͷׂΓ౰ͯ ˔ FUD ˓ એݴతૢ࡞ͱϦίϯαΠϧϧʔϓʢௐ੔ϧʔϓʣ ˓ ΦϖϨʔλͷ࢓૊ΈΛ࢖ͬͯίϯςφҎ֎΋ ؅ཧ ˔ ίϯςφΦʔέετϨʔγϣϯ΋Ͱ͖Δπʔϧ

  6. KubernetesͱCNIϓϥάΠϯ 6 ˓ ,VCFSOFUFT͸ίϯςφͷωοτϫʔΫ*'ͷ࡞੒Λ֎෦ ϓϥάΠϯʹ೚͍ͤͯΔ ˔ ͦΕΛ୲͏ͷ͕$POUBJOFS/FUXPSL*OUFSGBDFʢ$/*ʣ ϓϥάΠϯ ˔ $/*ϓϥάΠϯ͸,VCFSOFUFTઐ༻πʔϧͰ͸ͳ͍

    ˓ 1PEʢ㲈$POUBJOFSʣੜ੒࣌ʹ,VCFMFU͕$/*ϓϥάΠϯ Λىಈ ˓ $/*ϓϥάΠϯͷ੹೚ൣғ͸͋͘·Ͱ*'ͷ࡞੒͕ͩ ωοτϫʔΫपΓͷॾʑΛ୲͍ͬͯΔ

  7. KubernetesͱCNIϓϥάΠϯ 7 ˓ $/*ͷఆٛ͸͜͜ ˓ $/*ͷఏڙ͢΂͖ػೳ ˔ "%% ˗ ίϯςφʹωοτϫʔΫ*'Λ௥ՃPSߋ৽

    ˔ %&- ˗ ίϯςφͷωοτϫʔΫ*'Λ࡟আPS6OEP ˔ $)&$, ˗ ίϯςφͷωοτϫʔΫ*'ͷঢ়ଶ֬ೝ ˔ 7&34*0/ ˗ $/*ϓϥάΠϯͷόʔδϣϯ֬ೝ

  8. ୅දతͳCNIϓϥάΠϯ 8 ˓ 'MBOOFM ˓ $BMJDP ˓ 8FBWF ˓ $JMJVN

  9. Ciliumͷಛ௃ 9 ˓ F#1'Λॲཧج൫ʹ׆༻ ˔ 9%1ʹΑΔύέοτॲཧͷߴ଎Խ ˗ JQUBCMFTΑΓ΋ύϑΥʔϚϯεߴ ˔ ௨৴ଳҬ؅ཧ

    ˔ ॆ࣮ͨ͠؂ࢹػೳ ˓ ΤϯυϙΠϯτͷ*%ϕʔε؅ཧʢOPU*1ΞυϨεʣ ˔ LT্ͷΞϓϦέʔγϣϯ͸*1ΞυϨε͕සൟʹมΘΔ

  10. eBPF 10 ˓ FYUFOEFE#FSLFMFZ1BDLFU'JMUFS ˔ 1BDLFU'JMUFSͱݴ͍ͭͭγεςϜίʔϧͷϑΟϧλϦϯάΛ ͨ͠ΓϓϩάϥϜͷτϨʔγϯάΛͨ͠Γ ˓ ಠ໋ࣗྩηοτΛ΋ͬͨΧʔωϧ಺Ծ૝ϚγϯͰ࣮ߦ ˔

    γεςϜ7.͡Όͳͯ͘ϓϩηε7. ˔ ϓϩάϥϜͷݕࠪػߏ͕͋Δ ˓ $ݴޠͰهड़ ˓ ࠷ۙF#1''PVOEBUJPO͕-JOVY'PVOEBUJOࡿԼʹ Ͱ͖ͨ

  11. Kubernetesʹ͓͚ΔNetwork Policy 11 ˓ $/*ϓϥάΠϯ͕ػೳΛ͍࣋ͬͯΕ͹࢖༻Մೳ ˓ ҎԼͷཁૉͰϗϫΠτϦετΛ࡞੒ ˔ *1ΞυϨε ˔

    ໊લۭؒ ˔ ϥϕϧ ˔ ϙʔτ൪߸ /FUXPSL1PMJDZྫ

  12. Cilium Network PolicyʢCNPʣ 12 ˓ $/1͸,VCFSOFUFT/FUXPSL1PMJDZͷ֦ு ˔ 4FSWJDF ˔ &OUJUZ

    ˔ '2%/ ˔ -ʢ)551ɼ,BGLBʣ ˔ FUD ˓ BMMPXEFOZ྆ํՄೳ -$/1ͷྫ

  13. CNPͱICMP 13 ˓ ͔͠͠*$.1ͷBMMPXEFOZػೳ͸ͳ͔ͬͨ ˔ -ͷBMMPXϧʔϧΛ࡞Δͱ-΋ࣗಈతʹઃఆ͞ΕΔ ˠ*$.1શͯυϩοϓ ˓ ແ͍ͳΒ࡞Ζ͏

  14. Ciliumʹ͓͚ΔPolicyͷ࣮ݱ 14 /FUXPSL1PMJDZΛهड़ͨ͠ ϚχϑΣετϑΝΠϧ

  15. Ciliumʹ͓͚ΔPolicyͷ࣮ݱ 15 ਖ਼͍͔͠νΣοΫ F#1'.BQߏ଄ମ (P Ϣʔβۭ֤ؒϊʔυʹͯ /1༻F#1'.BQʹ ରԠ͢Δߏ଄ମʹม׵ F#1'.BQʹ௥Ճ

  16. Ciliumʹ͓͚ΔPolicyͷ࣮ݱ 16 ύέοτ F#1'.BQ Χʔωϧۭؒ ϔομΛಡΈऔͬͯ ߏ଄ମʹม׵ F#1'.BQLFZ র߹͢Δ 1BTT

    %SPQ

  17. ICMP Policyͷ࣮૷1 17 ਖ਼͍͔͠νΣοΫ Ϣʔβۭ֤ؒϊʔυʹͯ /1༻F#1'.BQʹ ରԠ͢Δߏ଄ମʹม׵ F#1'.BQʹ௥Ճ *$.1ϑΟʔϧυͷνΣοΫ *$.1UZQFΛ%FTU1PSUʹೖΕΔ

  18. ICMP Policyͷ࣮૷2 18 ύέοτ F#1'.BQ Χʔωϧۭؒ ϔομΛಡΈऔͬͯ ߏ଄ମʹม׵ F#1'.BQLFZ র߹͢Δ

    1BTT %SPQ *$.1ϔομΛಡΈऔΓ

  19. ICMP Policyͷ࣮૷3 19 ˓ ৄ͘͠͸ͪ͜Β ˔ IUUQTHJTUHJUIVCDPNDIF[TIBOQV DBDBDDGBGGDBE

  20. ۤ࿑ϙΠϯτ 20 ˓ F#1'͸ϓϩάϥϜαΠζʢ໋ྩ਺ʣͷ੍ݶ͋Γ ˔ ΧʔωϧόʔδϣϯʹΑͬͯҧ͏ͷͰͦΕͧΕͰ֬ೝ ˔ ͜ͷ੍ݶʹΑΓ*$.1ϑΟϧλʔ͸Ծ࣮૷ঢ়ଶ🥺 ˓ ʢ୭͔͕͕$*յ͢ͱࣗ෼ͷมߋΛϚʔδͯ͠΋Β͑ͳ͍ʣ

  21. ·ͱΊ 21 ˓ ,VCFSOFUFT͸ωοτϫʔΫػೳΛ$/*ϓϥάΠϯʹҕ೚ ˓ $JMJVN͸F#1'Λ࢖ͬͨ$/*ϓϥάΠϯͷҰͭ ˓ F#1'ͷ੍ݶ͔Β*$.1ϑΟϧλʔػೳ͸Ծ࣮૷ঢ়ଶ ˓ (4P$͸ऴΘΓ·͕ͨ͠ɼ΋͏ͪΐͬͱؤுΓ·͢