September 28, 2019

199 words 1 min read

Network Flow Monitoring in Kubernetes with Contiv/VPP CNI and Elastic Stack

Network Flow Monitoring in Kubernetes with Contiv/VPP CNI and Elastic Stack

Although most of the Kubernetes cluster administrators do not care about the network traffic in their clusters while everything works, visibility into the network flows in the cluster (both in real ti …

Talk Title Network Flow Monitoring in Kubernetes with Contiv/VPP CNI and Elastic Stack
Speakers Rastislav Szabo (Staff Engineer, PANTHEON.tech)
Conference KubeCon + CloudNativeCon
Conf Tag
Location Shanghai, China
Date Jun 23-26, 2019
URL Talk Page
Slides Talk Slides
Video

Although most of the Kubernetes cluster administrators do not care about the network traffic in their clusters while everything works, visibility into the network flows in the cluster (both in real time and in history) is crucial for debugging networking issues, identifying the bottlenecks in the deployments, or investigation of security incidents. This talk showcases how a powerful network flow monitoring & analysis tool for Kubernetes can be built by integrating of several existing open-source components: - Contiv/VPP CNI plugin, which uses FD.io VPP (Vector Packet Processing) stack with enabled IP Flow Information Export (IPFIX), - Logstash for collecting and post-processing of the network flows, - Elasticsearch which acts as the storage and search engine for the flows, - Kibana for easy observability of the stored flows.

comments powered by Disqus