Learning how AWS implement AWS VPC CNI

HungWei Chiu
HungWei ChiuProduct Developer
AWS VPC CNI AWS User Taiwan Group HungWei Chiu
Bio • HungWei Chiu(Hwchiu) • MTS @ Open Networking Foundation (ONF) • Kubernetes/Container/Linux/Network...etc • Blog: https://hwchiu.com • Facebook: 矽⾕⽜的耕⽥筆記
Agenda • Network Connectivity • What • How • AWS VPC CNI • What • Why • How
Network Connectivity • How service access outside world • How service is accessed by other services • IPAM (IP address management) • Environments • Bare metal • Virtualization • VM/Contaner • Orchestrator • OpenStack/K8s
Bare Metal Home https://awei791129.pixnet.net/blog/post/20872246 PPPOE Laptop Server Mobile Phone Wire Wireless Wireless 66.88.99.45 192.168.0.1 192.168.0.12 192.168.0.3 192.168.0.5 Device Router
NAT • Source NAT (SNAT) and Destination NAT (DNAT) • SNAT • Change Source IP • Internal to external • DNAT • Change Destination IP • External to internal
SNAT Home https://awei791129.pixnet.net/blog/post/20872246 PPPOE Laptop Server Mobile Phone Wire Wireless Wireless 66.88.99.45 192.168.0.1 192.168.0.12 192.168.0.3 192.168.0.5 Device Router P 8.8.8.8 192.168.0.12 Packet P 8.8.8.8 66.88.99.45 Packet
DNAT(Port Mapping) Home https://awei791129.pixnet.net/blog/post/20872246 PPPOE Laptop Server Mobile Phone Wire Wireless Wireless 66.88.99.45 192.168.0.1 192.168.0.12 192.168.0.3 192.168.0.5 Device Router P 8.8.8.8 192.168.0.12 Packet P 8.8.8.8 66.88.99.45 Packet
Bare Metal Home https://awei791129.pixnet.net/blog/post/20872246 PPPOE Laptop Server Mobile Phone Wire Wireless Wireless 66.88.99.45 192.168.0.1 10.15.0.12 10.15.0.5 10.15.0.6 Device Router Wireless AP Wire 192.168.0.2 10.15.0.2 Router SNAT/DNAT SNAT/DNAT Server 192.168.0.3
Bare Metal Home https://awei791129.pixnet.net/blog/post/20872246 PPPOE Laptop Server Mobile Phone Wire Wireless Wireless 66.88.99.45 192.168.0.1 10.15.0.12 10.15.0.5 10.15.0.6 Device Router Wireless AP Wire 192.168.0.2 10.15.0.2 Router SNAT/DNAT SNAT/DNAT Server 192.168.0.3
NAT • Increase the complexity for debugging • Decorate the network performance • Increase the security • Decrease the accessibility
Container Home https://awei791129.pixnet.net/blog/post/20872246 PPPOE Server Wire 66.88.99.45 192.168.0.1 192.168.0.12 Container Router Container 1 Router Container 2 Container 3 Linux Bridge eth0 10.18.0.1 10.18.0.2 10.18.0.12 10.18.0.4
NAT Home https://awei791129.pixnet.net/blog/post/20872246 PPPOE Server Wire 66.88.99.45 192.168.0.1 192.168.0.12 Container Router Container 1 Router Container 2 Container 3 Linux Bridge eth0 10.18.0.1 10.18.0.2 10.18.0.12 10.18.0.4 8.8.8.8 10.18.0.2 8.8.8.8 66.88.99.45 8.8.8.8 192.168.0.12
Docker Expose (-p 8080:80) Home https://awei791129.pixnet.net/blog/post/20872246 PPPOE Server Wire 66.88.99.45 192.168.0.1 192.168.0.12 Container Router Container 1 Router Container 2 Container 3 Linux Bridge eth0 10.18.0.1 10.18.0.2 10.18.0.12 10.18.0.4 Laptop Browser 192.168.0.15 10.18.0.4 192.168.0.15 192.168.0.12 192.168.0.15 10.18.0.4 192.168.0.15
Container • Private subnet by default • NAT is required • Docker simplify the DNAY process (-p) • More and more NAT
Advanced Mode Home https://awei791129.pixnet.net/blog/post/20872246 PPPOE Server Wire 66.88.99.45 192.168.0.1 192.168.0.12 Container Router Container 1 Switch Container 2 Container 3 eth0 192.168.0.32 192.168.0.28 192.168.0.25 Laptop Browser 192.168.0.15 192.168.0.28 192.168.0.15 192.168.0.28 192.168.0.15 192.168.0.28 192.168.0.15
Advance Mode • NAT isn't necessary • Better performance • Issue • How to manage container's IP addresses? • Con f lict? • Multiple nodes?
Container Clusters Home https://awei791129.pixnet.net/blog/post/20872246 PPPOE Server 66.88.99.45 192.168.0.1 192.168.0.12 Container Router Container 1 Router Container 2 Container 3 Linux Bridge eth0 10.18.0.1 10.18.0.2 10.18.0.12 10.18.0.4 Server eth0 Linux Bridge Container 1 Container 2 192.168.0.15
Same subnet Home https://awei791129.pixnet.net/blog/post/20872246 PPPOE Server 66.88.99.45 192.168.0.1 192.168.0.12 Container Router Container 1 Router Container 2 Container 3 Linux Bridge eth0 10.18.0.1 10.18.0.2 10.18.0.12 10.18.0.4 Server eth0 Linux Bridge Container 1 Container 2 192.168.0.15 10.18.0.1 10.18.0.15 10.18.0.12
Different Subnet Home https://awei791129.pixnet.net/blog/post/20872246 PPPOE Server 66.88.99.45 192.168.0.1 192.168.0.12 Container Router Container 1 Router Container 2 Container 3 Linux Bridge eth0 10.18.0.1 10.18.0.2 10.18.0.12 10.18.0.4 Server eth0 Linux Bridge Container 1 Container 2 192.168.0.15 10.19.0.1 10.19.0.23 10.19.0.15
Across-Node Accessibility Home https://awei791129.pixnet.net/blog/post/20872246 PPPOE Server 66.88.99.45 192.168.0.1 192.168.0.12 Container Router Container 1 Router Container 2 Container 3 Linux Bridge eth0 10.18.0.1 10.18.0.2 10.18.0.12 10.18.0.4 Server eth0 Linux Bridge Container 1 Container 2 192.168.0.15 10.19.0.1 10.19.0.23 10.19.0.15
Across-Node Accessibility • Have to perform SNAT and DNAT for each f low direction. • Container Cluster(Kubernetes) • How does K8s solve it? • CNI (Container Network Interface) • Tunneling protocol • VXLAN, IPIP
Tunneling • IP over IP • Encapsulate original IP header with additional IP header • Inner IPv4 • Container to Container • Outer IPv4 • Node to Node
Across-Node Accessibility Home https://awei791129.pixnet.net/blog/post/20872246 PPPOE Server 66.88.99.45 192.168.0.1 192.168.0.12 Container Router Container 1 Router Container 2 Container 3 Linux Bridge eth0 10.18.0.1 10.18.0.2 10.18.0.12 10.18.0.4 Server eth0 Linux Bridge Container 1 Container 2 192.168.0.15 10.19.0.1 10.19.0.23 10.19.0.15
Example • NodeA (192.168.0.15) • Container A (10.19.0.15) • NodeB (192.168.0.12) • Container B (10.18.0.2) • Container A ping Container B
Example NodeA tunl Container Eth0 NodeB tunl Container Eth0 10.19.0.15 10.18.0.2 192.168.0.12 192.168.0.15
Example NodeA tunl Container Eth0 NodeB tunl Container Eth0 10.19.0.15 10.18.0.2 192.168.0.12 192.168.0.15 10.19.0.15 10.18.0.2 10.19.0.15 10.18.0.2 192.168.0.15 192.168.0.12 Data 10.19.0.15 10.18.0.2 Data There are Data now
AWS VPC CNI • AWS VPC CNI • AWS VPC • CNI (Container Network Interface) • Kubernetes use it to setup the network connectivity • What are Kubernetes and CNI ?
Kubernetes (container orchestrator) https://kubernetes.io/blog/2018/07/18/11-ways-not-to-get-hacked/
Kubernetes CNI Server(K8s Node) Kubelet Pod(Sandbox) CNI(binary) 1 2 3 Server(K8s Node) Kubelet Pod(Sandbox) CNI(binary) 1 2 3 • Executed by Kubelet • CNI is a standalone binary executable binary • Help to setup the network connectivity for Sandbox(Pause Container)
AWS VPC CNI • Goals • Support high throughput and availability, low latency • Users must be able to express and enforce network policies and isolation • Compare to native EC2 networking and security groups.
AWS VPC CNI • Goals • Network operation must be simple and secure. • Use VPC f low logs • Apply VPC routing polices • Pod networking should be setup in a matter of seconds
AWS VPC 10.2.0.0/16 Subnet A 10.2.0.0/24 EC2 Instance 10.2.0.5 EC2 Instance 10.2.0.6 EC2 Instance 10.2.0.80 Underlay Network Network Tra ff ic Network Tra ff ic Network Tra ff ic
AWS VPC and K8S 10.2.0.0/16 Subnet A 10.2.0.0/24 Underlay Network Pod 
 Pod 
 Pod 
 Pod 
 Pod 
 Pod 
 EC2 Instance 10.2.0.5 EC2 Instance 10.2.0.6 EC2 Instance 10.2.0.80
Other CNI (IP over IP) 10.2.0.0/16 Subnet A 10.2.0.0/24 Underlay Network Pod 
 Pod 
 Pod 
 Pod 
 Pod 
 Pod 
 EC2 Instance 10.2.0.5 EC2 Instance 10.2.0.6 EC2 Instance 10.2.0.80 10.56.2.5 10.56.2.15 10.56.5.5 10.56.5.48 10.56.9.5 10.56.9.25 10.56.9.0/24 10.56.5.0/24 10.56.2.0/24
Other CNI (IP over IP) 10.2.0.0/16 Subnet A 10.2.0.0/24 Underlay Network Pod 
 Pod 
 Pod 
 Pod 
 Pod 
 Pod 
 EC2 Instance 10.2.0.5 EC2 Instance 10.2.0.6 EC2 Instance 10.2.0.80 10.56.2.5 10.56.2.15 10.56.5.5 10.56.5.48 10.56.9.5 10.56.9.25 10.56.9.0/24 10.56.5.0/24 10.56.2.0/24 10.2.0.5 -> 10.2.0.80
Other CNI (IP over IP) 10.2.0.0/16 Subnet A 10.2.0.0/24 Underlay Network Pod 
 Pod 
 Pod 
 Pod 
 Pod 
 Pod 
 EC2 Instance 10.2.0.5 EC2 Instance 10.2.0.6 EC2 Instance 10.2.0.80 10.56.2.5 10.56.2.15 10.56.5.5 10.56.5.48 10.56.9.5 10.56.9.25 10.56.9.0/24 10.56.5.0/24 10.56.2.0/24 10.2.0.5 -> 10.2.0.80 Security Group ? Visibility ?
AWS VPC CNI 10.2.0.0/16 Subnet A 10.2.0.0/24 Underlay Network Pod 
 Pod 
 Pod 
 Pod 
 Pod 
 Pod 
 EC2 Instance 10.2.0.5 EC2 Instance 10.2.0.6 EC2 Instance 10.2.0.80 10.2.0.26 10.2.0.16 10.2.0.53 10.2.0.54 10.2.0.82 10.2.0.182 10.2.0.20 -> 10.2.0.82
AWS VPC CNI 10.2.0.0/16 Subnet A 10.2.0.0/24 Underlay Network Pod 
 Pod 
 Pod 
 Pod 
 Pod 
 Pod 
 EC2 Instance 10.2.0.5 EC2 Instance 10.2.0.6 EC2 Instance 10.2.0.80 10.2.0.26 10.2.0.16 10.2.0.53 10.2.0.54 10.2.0.82 10.2.0.182 10.2.0.20 -> 10.2.0.82 Security Group Visibility
AWS VPC CNI • Requirement • IPAM (IP addresses management) • Unique • Routing rules
Implementation • Currently • Each EC2 instance can have multiple elastic network interfaces (ENI) • ENI can have multiple IPv4/IPv6 addresses. • EC2-VPC Fabric will deliver the packet to the instance • The primary ENI IP address is automatically assigned to the interface • All secondary addresses remain unassigned • Host owner to con f igure them
Components https://github.com/aws/amazon-vpc-cni-k8s/blob/master/docs/cni-proposal.md
L-IPAMD • Local IP address Manager (L-IPAM) • Small and single binary on each host to maintain a warm-pool of available secondary IP addresses.
L-IPAMD • Maintaining the warm-pool of available secondary IP addresses • Number of IP < threshold • Create a new ENI and attach it to instance • Allocate all available IP addresses on this new ENI • Wait for the IP addresses to be ready and then add to warm-pool • Number of IP > threshold • Detach a ENI and free it and related IPs
CNI Plugin • Get a secondary IP address assigned to the instance by L-IPAMD • Set up the network device • Host • Pod(Sandbox) • Set up the routing rules • Host • Pod
AWS VPC CNI 172.31.0.0/16 Subnet A 172.31.0.0/20 Underlay Network ENI IPs L-IPAMD IP Pool VPN CNI 172.31.1.204
AWS VPC CNI Underlay Network ENI IPs L-IPAMD IP Pool VPN CNI Pod(Sandbox) 172.31.0.0/16 Subnet A 172.31.0.0/20 172.31.1.204
AWS VPC CNI Underlay Network ENI IPs L-IPAMD IP Pool VPN CNI Pod(Sandbox) veth1 veth2 172.31.0.0/16 Subnet A 172.31.0.0/20 172.31.1.204
AWS VPC CNI Underlay Network ENI IPs L-IPAMD IP Pool VPN CNI Pod(Sandbox) veth1 veth2 172.31.0.0/16 Subnet A 172.31.0.0/20 172.31.1.204
AWS VPC CNI Underlay Network ENI IPs L-IPAMD IP Pool VPN CNI Pod(Sandbox) eth0 enixxxx 172.31.15.74/32 172.31.0.0/16 169.254.1.1 Subnet A 172.31.0.0/20 172.31.1.204
Pod ARP/Routing MAC address of enixxxx ARP/Routing Table (Pod)
Pod ARP/Routing(Cont.) ARP/Routing Table (Host)
AWS VPC CNI Underlay Network 172.31.0.0/16 Subnet A 172.31.0.0/20 172.31.1.204 ENI IPs L-IPAMD IP Pool VPN CNI Pod(Sandbox) eth0 enixxxx 172.31.10.79/32 172.31.11.162 169.254.1.1 ENI IPs L-IPAMD IP Pool VPN CNI Pod(Sandbox) eth0 enixxxx 172.31.15.74/32 169.254.1.1 2 1 3
Packet f low • 172.31.15.74 ping 172.31.10.79 • Pod (172.31.15.74)
Packet f low • 172.31.15.74 ping 172.31.10.79 • Node (172.31.1.204)
Packet f low • 172.31.15.74 ping 172.31.10.79 • Node (172.31.11.162)
AWS VPC CNI Underlay Network 172.31.0.0/16 Subnet A 172.31.0.0/20 172.31.1.204 ENI IPs L-IPAMD IP Pool VPN CNI Pod(Sandbox) eth0 enixxxx 172.31.10.79/32 172.31.11.162 169.254.1.1 ENI IPs L-IPAMD IP Pool VPN CNI Pod(Sandbox) eth0 enixxxx 172.31.15.74/32 169.254.1.1 2 1 3 172.31.15.174 -> 172.31.10.79
Others • Debugging scripts
Others • Debugging IPAMD • Prometheus endpoint • curl http://localhost:61678/metrics • Other information (json) • curl http://localhost:61679/v1/pods • curl http://localhost:61679/v1/enis
Limitation • M: Number of ENI • N: Number of IP address per ENI • Ignore Primary address • M*(N-1) • T3.medium • M=3, N=6 • 3*(6-1)=15 https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/using-eni.html
Limitation • Final formula is • M*(N-1) + 2 • Two Pods are deployed before CNI • L-IPAMD • kube-proxy • Both two pods use the hostnetowk https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/using-eni.html
Limitation • Magic number 2 • Final formula is • M*(N-1) + 2 • Two Pods are deployed before CNI • L-IPAMD • kube-proxy • Both two pods use the hostnetowk https://github.com/awslabs/amazon-eks-ami/blob/master/ f iles/eni-max-pods.txt
Limitation 13 Running Pod 17 = testing(13) + coreDNS (2) + kube-proxy(1) + CNI (1)
Summary • Have to deploy two binary (L-IPAMD, CNI Binary) • L-IPAMD is deployed by K8S DaemonSet • With the help of AWS VPC CNI • Reduce the number of SNAT/DNAT • Better performance compared to Tunneling protocol • User is able to apply existing AWS VPC networking and security best practices for k8s cluster.
Q&A
1 of 65

Learning how AWS implement AWS VPC CNI

Download to read offline
Engineering

Introduce different kinds of network topology design and how AWS design its AWS VPN CNI

HungWei Chiu
HungWei ChiuProduct Developer

Recommended

[2018] 오픈스택 5년 운영의 경험 by
[2018] 오픈스택 5년 운영의 경험[2018] 오픈스택 5년 운영의 경험
[2018] 오픈스택 5년 운영의 경험NHN FORWARD
2.7K views46 slides
Kubernetes Networking 101 by
Kubernetes Networking 101Kubernetes Networking 101
Kubernetes Networking 101Weaveworks
6.6K views30 slides
Introduction to the Container Network Interface (CNI) by
Introduction to the Container Network Interface (CNI)Introduction to the Container Network Interface (CNI)
Introduction to the Container Network Interface (CNI)Weaveworks
12.1K views19 slides
[MeetUp][2nd] 오리뎅이의_쿠버네티스_네트워킹_v1.2 by
[MeetUp][2nd] 오리뎅이의_쿠버네티스_네트워킹_v1.2[MeetUp][2nd] 오리뎅이의_쿠버네티스_네트워킹_v1.2
[MeetUp][2nd] 오리뎅이의_쿠버네티스_네트워킹_v1.2InfraEngineer
4K views86 slides
Kubernetes 101 by
Kubernetes 101Kubernetes 101
Kubernetes 101Jacopo Nardiello
3.7K views48 slides
Kubernetes Networking by
Kubernetes NetworkingKubernetes Networking
Kubernetes NetworkingCJ Cullen
26.7K views91 slides

More Related Content

What's hot

[오픈소스컨설팅] Open Stack Ceph, Neutron, HA, Multi-Region by
[오픈소스컨설팅] Open Stack Ceph, Neutron, HA, Multi-Region[오픈소스컨설팅] Open Stack Ceph, Neutron, HA, Multi-Region
[오픈소스컨설팅] Open Stack Ceph, Neutron, HA, Multi-RegionJi-Woong Choi
6K views106 slides
[MeetUp][1st] 오리뎅이의_쿠버네티스_네트워킹 by
[MeetUp][1st] 오리뎅이의_쿠버네티스_네트워킹[MeetUp][1st] 오리뎅이의_쿠버네티스_네트워킹
[MeetUp][1st] 오리뎅이의_쿠버네티스_네트워킹InfraEngineer
12.5K views75 slides
Introduction to CNI (Container Network Interface) by
Introduction to CNI (Container Network Interface)Introduction to CNI (Container Network Interface)
Introduction to CNI (Container Network Interface)HungWei Chiu
3.5K views69 slides
Kubernetes Networking | Kubernetes Services, Pods & Ingress Networks | Kubern... by
Kubernetes Networking | Kubernetes Services, Pods & Ingress Networks | Kubern...Kubernetes Networking | Kubernetes Services, Pods & Ingress Networks | Kubern...
Kubernetes Networking | Kubernetes Services, Pods & Ingress Networks | Kubern...Edureka!
939 views32 slides
Deep dive into Kubernetes Networking by
Deep dive into Kubernetes NetworkingDeep dive into Kubernetes Networking
Deep dive into Kubernetes NetworkingSreenivas Makam
9.3K views30 slides
Introduction to Kubernetes Workshop by
Introduction to Kubernetes WorkshopIntroduction to Kubernetes Workshop
Introduction to Kubernetes WorkshopBob Killen
4.7K views172 slides

What's hot(20)

[오픈소스컨설팅] Open Stack Ceph, Neutron, HA, Multi-Region by Ji-Woong Choi
[오픈소스컨설팅] Open Stack Ceph, Neutron, HA, Multi-Region[오픈소스컨설팅] Open Stack Ceph, Neutron, HA, Multi-Region
[오픈소스컨설팅] Open Stack Ceph, Neutron, HA, Multi-Region
Ji-Woong Choi6K views
[MeetUp][1st] 오리뎅이의_쿠버네티스_네트워킹 by InfraEngineer
[MeetUp][1st] 오리뎅이의_쿠버네티스_네트워킹[MeetUp][1st] 오리뎅이의_쿠버네티스_네트워킹
[MeetUp][1st] 오리뎅이의_쿠버네티스_네트워킹
InfraEngineer12.5K views
Introduction to CNI (Container Network Interface) by HungWei Chiu
Introduction to CNI (Container Network Interface)Introduction to CNI (Container Network Interface)
Introduction to CNI (Container Network Interface)
HungWei Chiu3.5K views
Kubernetes Networking | Kubernetes Services, Pods & Ingress Networks | Kubern... by Edureka!
Kubernetes Networking | Kubernetes Services, Pods & Ingress Networks | Kubern...Kubernetes Networking | Kubernetes Services, Pods & Ingress Networks | Kubern...
Kubernetes Networking | Kubernetes Services, Pods & Ingress Networks | Kubern...
Edureka!939 views
Deep dive into Kubernetes Networking by Sreenivas Makam
Deep dive into Kubernetes NetworkingDeep dive into Kubernetes Networking
Deep dive into Kubernetes Networking
Sreenivas Makam9.3K views
Introduction to Kubernetes Workshop by Bob Killen
Introduction to Kubernetes WorkshopIntroduction to Kubernetes Workshop
Introduction to Kubernetes Workshop
Bob Killen4.7K views
Introduction to kubernetes by Gabriel Carro
Introduction to kubernetesIntroduction to kubernetes
Introduction to kubernetes
Gabriel Carro229 views
Kubernetes 101 by Crevise Technologies
Kubernetes 101Kubernetes 101
Kubernetes 101
Crevise Technologies1.6K views
Writing the Container Network Interface(CNI) plugin in golang by HungWei Chiu
Writing the Container Network Interface(CNI) plugin in golangWriting the Container Network Interface(CNI) plugin in golang
Writing the Container Network Interface(CNI) plugin in golang
HungWei Chiu2.4K views
Docker, LinuX Container by Araf Karsh Hamid
Docker, LinuX ContainerDocker, LinuX Container
Docker, LinuX Container
Araf Karsh Hamid5.6K views
Docker Networking Deep Dive by Docker, Inc.
Docker Networking Deep DiveDocker Networking Deep Dive
Docker Networking Deep Dive
Docker, Inc.17.5K views
Service Mesh - Why? How? What? by Orkhan Gasimov
Service Mesh - Why? How? What?Service Mesh - Why? How? What?
Service Mesh - Why? How? What?
Orkhan Gasimov637 views
Kubernetes - A Comprehensive Overview by Bob Killen
Kubernetes - A Comprehensive OverviewKubernetes - A Comprehensive Overview
Kubernetes - A Comprehensive Overview
Bob Killen26.5K views
Introduction of Kubernetes - Trang Nguyen by Trang Nguyen
Introduction of Kubernetes - Trang NguyenIntroduction of Kubernetes - Trang Nguyen
Introduction of Kubernetes - Trang Nguyen
Trang Nguyen485 views
Docker Networking Overview by Sreenivas Makam
Docker Networking OverviewDocker Networking Overview
Docker Networking Overview
Sreenivas Makam21K views
knolx of KubeCost & Infracost by Knoldus Inc.
knolx of KubeCost & Infracostknolx of KubeCost & Infracost
knolx of KubeCost & Infracost
Knoldus Inc.299 views
Accelerating Envoy and Istio with Cilium and the Linux Kernel by Thomas Graf
Accelerating Envoy and Istio with Cilium and the Linux KernelAccelerating Envoy and Istio with Cilium and the Linux Kernel
Accelerating Envoy and Istio with Cilium and the Linux Kernel
Thomas Graf7.5K views
Scale Kubernetes to support 50000 services by LinuxCon ContainerCon CloudOpen China
Scale Kubernetes to support 50000 servicesScale Kubernetes to support 50000 services
Scale Kubernetes to support 50000 services
LinuxCon ContainerCon CloudOpen China6.6K views
[오픈소스컨설팅] 쿠버네티스와 쿠버네티스 on 오픈스택 비교 및 구축 방법 by Open Source Consulting
[오픈소스컨설팅] 쿠버네티스와 쿠버네티스 on 오픈스택 비교 및 구축 방법[오픈소스컨설팅] 쿠버네티스와 쿠버네티스 on 오픈스택 비교 및 구축 방법
[오픈소스컨설팅] 쿠버네티스와 쿠버네티스 on 오픈스택 비교 및 구축 방법
Open Source Consulting3.6K views
클라우드 환경을 위한 네트워크 가상화와 NSX(기초편) by Laehyoung Kim
클라우드 환경을 위한 네트워크 가상화와 NSX(기초편)클라우드 환경을 위한 네트워크 가상화와 NSX(기초편)
클라우드 환경을 위한 네트워크 가상화와 NSX(기초편)
Laehyoung Kim19.1K views

Similar to Learning how AWS implement AWS VPC CNI

"One network to rule them all" - OpenStack Summit Austin 2016 by
"One network to rule them all" - OpenStack Summit Austin 2016"One network to rule them all" - OpenStack Summit Austin 2016
"One network to rule them all" - OpenStack Summit Austin 2016Phil Estes
955 views18 slides
Packet Walk(s) In Kubernetes by
Packet Walk(s) In KubernetesPacket Walk(s) In Kubernetes
Packet Walk(s) In KubernetesDon Jayakody
460 views51 slides
AWS re:Invent 2016: NextGen Networking: New Capabilities for Amazon’s Virtual... by
AWS re:Invent 2016: NextGen Networking: New Capabilities for Amazon’s Virtual...AWS re:Invent 2016: NextGen Networking: New Capabilities for Amazon’s Virtual...
AWS re:Invent 2016: NextGen Networking: New Capabilities for Amazon’s Virtual...Amazon Web Services
2K views36 slides
Packet walks in_kubernetes-v4 by
Packet walks in_kubernetes-v4Packet walks in_kubernetes-v4
Packet walks in_kubernetes-v4InfraEngineer
477 views50 slides
How to build a Kubernetes networking solution from scratch by
How to build a Kubernetes networking solution from scratchHow to build a Kubernetes networking solution from scratch
How to build a Kubernetes networking solution from scratchAll Things Open
394 views38 slides
KuberNETes - meetup by
KuberNETes - meetupKuberNETes - meetup
KuberNETes - meetupNathan Ness
1.3K views23 slides

Similar to Learning how AWS implement AWS VPC CNI(20)

"One network to rule them all" - OpenStack Summit Austin 2016 by Phil Estes
"One network to rule them all" - OpenStack Summit Austin 2016"One network to rule them all" - OpenStack Summit Austin 2016
"One network to rule them all" - OpenStack Summit Austin 2016
Phil Estes955 views
Packet Walk(s) In Kubernetes by Don Jayakody
Packet Walk(s) In KubernetesPacket Walk(s) In Kubernetes
Packet Walk(s) In Kubernetes
Don Jayakody460 views
AWS re:Invent 2016: NextGen Networking: New Capabilities for Amazon’s Virtual... by Amazon Web Services
AWS re:Invent 2016: NextGen Networking: New Capabilities for Amazon’s Virtual...AWS re:Invent 2016: NextGen Networking: New Capabilities for Amazon’s Virtual...
AWS re:Invent 2016: NextGen Networking: New Capabilities for Amazon’s Virtual...
Amazon Web Services2K views
Packet walks in_kubernetes-v4 by InfraEngineer
Packet walks in_kubernetes-v4Packet walks in_kubernetes-v4
Packet walks in_kubernetes-v4
InfraEngineer477 views
How to build a Kubernetes networking solution from scratch by All Things Open
How to build a Kubernetes networking solution from scratchHow to build a Kubernetes networking solution from scratch
How to build a Kubernetes networking solution from scratch
All Things Open394 views
KuberNETes - meetup by Nathan Ness
KuberNETes - meetupKuberNETes - meetup
KuberNETes - meetup
Nathan Ness1.3K views
Kubernetes networking - basics by Juraj Hantak
Kubernetes networking - basicsKubernetes networking - basics
Kubernetes networking - basics
Juraj Hantak125.1K views
Service Discovery: From Classic to VPC by Mark Corwin
Service Discovery: From Classic to VPCService Discovery: From Classic to VPC
Service Discovery: From Classic to VPC
Mark Corwin388 views
Kubernetes networks by Che-Chia Chang
Kubernetes networksKubernetes networks
Kubernetes networks
Che-Chia Chang421 views
CON411-R - Advanced network resource management on Amazon EKS by Claes Mogren
CON411-R - Advanced network resource management on Amazon EKSCON411-R - Advanced network resource management on Amazon EKS
CON411-R - Advanced network resource management on Amazon EKS
Claes Mogren368 views
Building a Cloud Native Service - Docker Meetup Santa Clara (July 20, 2017) by Yong Tang
Building a Cloud Native Service - Docker Meetup Santa Clara (July 20, 2017)Building a Cloud Native Service - Docker Meetup Santa Clara (July 20, 2017)
Building a Cloud Native Service - Docker Meetup Santa Clara (July 20, 2017)
Yong Tang559 views
Tutorial on using CoreOS Flannel for Docker networking by LorisPack Project
Tutorial on using CoreOS Flannel for Docker networkingTutorial on using CoreOS Flannel for Docker networking
Tutorial on using CoreOS Flannel for Docker networking
LorisPack Project22K views
Network plugins for kubernetes by inwin stack
Network plugins for kubernetesNetwork plugins for kubernetes
Network plugins for kubernetes
inwin stack3.8K views
Open vSwitch Introduction by HungWei Chiu
Open vSwitch IntroductionOpen vSwitch Introduction
Open vSwitch Introduction
HungWei Chiu814 views
DockerCon EU 2018 Workshop: Container Networking for Swarm and Kubernetes in ... by Guillaume Morini
DockerCon EU 2018 Workshop: Container Networking for Swarm and Kubernetes in ...DockerCon EU 2018 Workshop: Container Networking for Swarm and Kubernetes in ...
DockerCon EU 2018 Workshop: Container Networking for Swarm and Kubernetes in ...
Guillaume Morini300 views
Nynog-K8s-networking-101.pptx by DanielHertzberg4
Nynog-K8s-networking-101.pptxNynog-K8s-networking-101.pptx
Nynog-K8s-networking-101.pptx
DanielHertzberg471 views
99cloud Docker Training module 2 by Liang Bo
99cloud Docker Training module 299cloud Docker Training module 2
99cloud Docker Training module 2
Liang Bo1.1K views
OpenStack Israel Meetup - Project Kuryr: Bringing Container Networking to Neu... by Cloud Native Day Tel Aviv
OpenStack Israel Meetup - Project Kuryr: Bringing Container Networking to Neu...OpenStack Israel Meetup - Project Kuryr: Bringing Container Networking to Neu...
OpenStack Israel Meetup - Project Kuryr: Bringing Container Networking to Neu...
Cloud Native Day Tel Aviv1.5K views
Secure Your Containers: What Network Admins Should Know When Moving Into Prod... by Cynthia Thomas
Secure Your Containers: What Network Admins Should Know When Moving Into Prod...Secure Your Containers: What Network Admins Should Know When Moving Into Prod...
Secure Your Containers: What Network Admins Should Know When Moving Into Prod...
Cynthia Thomas1.6K views
Networking in the cloud by Cliff Chao-kuan Lu
Networking in the cloudNetworking in the cloud
Networking in the cloud
Cliff Chao-kuan Lu511 views

More from HungWei Chiu

Learn O11y from Grafana ecosystem. by
Learn O11y from Grafana ecosystem.Learn O11y from Grafana ecosystem.
Learn O11y from Grafana ecosystem.HungWei Chiu
1.4K views45 slides
Learned from KIND by
Learned from KIND Learned from KIND
Learned from KIND HungWei Chiu
104 views56 slides
Debug Your Kubernetes Network by
Debug Your Kubernetes NetworkDebug Your Kubernetes Network
Debug Your Kubernetes NetworkHungWei Chiu
83 views41 slides
以 eBPF 構建一個更為堅韌的 Kubernetes 叢集 by
以 eBPF 構建一個更為堅韌的 Kubernetes 叢集以 eBPF 構建一個更為堅韌的 Kubernetes 叢集
以 eBPF 構建一個更為堅韌的 Kubernetes 叢集HungWei Chiu
312 views32 slides
Jenkins & IaC by
Jenkins & IaCJenkins & IaC
Jenkins & IaCHungWei Chiu
551 views43 slides
The relationship between Docker, Kubernetes and CRI by
The relationship between Docker, Kubernetes and CRIThe relationship between Docker, Kubernetes and CRI
The relationship between Docker, Kubernetes and CRIHungWei Chiu
902 views9 slides

More from HungWei Chiu(20)

Learn O11y from Grafana ecosystem. by HungWei Chiu
Learn O11y from Grafana ecosystem.Learn O11y from Grafana ecosystem.
Learn O11y from Grafana ecosystem.
HungWei Chiu1.4K views
Learned from KIND by HungWei Chiu
Learned from KIND Learned from KIND
Learned from KIND
HungWei Chiu104 views
Debug Your Kubernetes Network by HungWei Chiu
Debug Your Kubernetes NetworkDebug Your Kubernetes Network
Debug Your Kubernetes Network
HungWei Chiu83 views
以 eBPF 構建一個更為堅韌的 Kubernetes 叢集 by HungWei Chiu
以 eBPF 構建一個更為堅韌的 Kubernetes 叢集以 eBPF 構建一個更為堅韌的 Kubernetes 叢集
以 eBPF 構建一個更為堅韌的 Kubernetes 叢集
HungWei Chiu312 views
Jenkins & IaC by HungWei Chiu
Jenkins & IaCJenkins & IaC
Jenkins & IaC
HungWei Chiu551 views
The relationship between Docker, Kubernetes and CRI by HungWei Chiu
The relationship between Docker, Kubernetes and CRIThe relationship between Docker, Kubernetes and CRI
The relationship between Docker, Kubernetes and CRI
HungWei Chiu902 views
Life by HungWei Chiu
LifeLife
Life
HungWei Chiu928 views
Introduction to CRI and OCI by HungWei Chiu
Introduction to CRI and OCIIntroduction to CRI and OCI
Introduction to CRI and OCI
HungWei Chiu616 views
IP Virtual Server(IPVS) 101 by HungWei Chiu
IP Virtual Server(IPVS) 101IP Virtual Server(IPVS) 101
IP Virtual Server(IPVS) 101
HungWei Chiu376 views
Opentracing 101 by HungWei Chiu
Opentracing 101Opentracing 101
Opentracing 101
HungWei Chiu354 views
iptables and Kubernetes by HungWei Chiu
iptables and Kubernetesiptables and Kubernetes
iptables and Kubernetes
HungWei Chiu345 views
IPTABLES Introduction by HungWei Chiu
IPTABLES IntroductionIPTABLES Introduction
IPTABLES Introduction
HungWei Chiu668 views
Load Balancing 101 by HungWei Chiu
Load Balancing 101Load Balancing 101
Load Balancing 101
HungWei Chiu867 views
How Networking works with Data Science by HungWei Chiu
How Networking works with Data Science How Networking works with Data Science
How Networking works with Data Science
HungWei Chiu607 views
Introduction to CircleCI by HungWei Chiu
Introduction to CircleCIIntroduction to CircleCI
Introduction to CircleCI
HungWei Chiu982 views
Head First to Container&Kubernetes by HungWei Chiu
Head First to Container&KubernetesHead First to Container&Kubernetes
Head First to Container&Kubernetes
HungWei Chiu376 views
Kubernetes 1001 by HungWei Chiu
Kubernetes 1001Kubernetes 1001
Kubernetes 1001
HungWei Chiu644 views
Application-Based Routing by HungWei Chiu
Application-Based RoutingApplication-Based Routing
Application-Based Routing
HungWei Chiu1.9K views
Build Your Own CaaS (Container as a Service) by HungWei Chiu
Build Your Own CaaS (Container as a Service)Build Your Own CaaS (Container as a Service)
Build Your Own CaaS (Container as a Service)
HungWei Chiu726 views
Control Your Network ASICs, What Benefits switchdev Can Bring Us by HungWei Chiu
Control Your Network ASICs, What Benefits switchdev Can Bring UsControl Your Network ASICs, What Benefits switchdev Can Bring Us
Control Your Network ASICs, What Benefits switchdev Can Bring Us
HungWei Chiu1.1K views

Recently uploaded

Control Systems Feedback.pdf by
Control Systems Feedback.pdfControl Systems Feedback.pdf
Control Systems Feedback.pdfLGGaming5
5 views39 slides
Investigation of Physicochemical Changes of Soft Clay around Deep Geopolymer ... by
Investigation of Physicochemical Changes of Soft Clay around Deep Geopolymer ...Investigation of Physicochemical Changes of Soft Clay around Deep Geopolymer ...
Investigation of Physicochemical Changes of Soft Clay around Deep Geopolymer ...AltinKaradagli
9 views16 slides
Digital Watermarking Of Audio Signals.pptx by
Digital Watermarking Of Audio Signals.pptxDigital Watermarking Of Audio Signals.pptx
Digital Watermarking Of Audio Signals.pptxAyushJaiswal781174
11 views25 slides
GDSC Mikroskil Members Onboarding 2023.pdf by
GDSC Mikroskil Members Onboarding 2023.pdfGDSC Mikroskil Members Onboarding 2023.pdf
GDSC Mikroskil Members Onboarding 2023.pdfgdscmikroskil
12 views62 slides
SUMIT SQL PROJECT SUPERSTORE 1.pptx by
SUMIT SQL PROJECT SUPERSTORE 1.pptxSUMIT SQL PROJECT SUPERSTORE 1.pptx
SUMIT SQL PROJECT SUPERSTORE 1.pptxSumit Jadhav
12 views26 slides
SNMPx by
SNMPxSNMPx
SNMPxAmatullahbutt
16 views12 slides

Recently uploaded(20)

Control Systems Feedback.pdf by LGGaming5
Control Systems Feedback.pdfControl Systems Feedback.pdf
Control Systems Feedback.pdf
LGGaming55 views
Investigation of Physicochemical Changes of Soft Clay around Deep Geopolymer ... by AltinKaradagli
Investigation of Physicochemical Changes of Soft Clay around Deep Geopolymer ...Investigation of Physicochemical Changes of Soft Clay around Deep Geopolymer ...
Investigation of Physicochemical Changes of Soft Clay around Deep Geopolymer ...
AltinKaradagli9 views
Digital Watermarking Of Audio Signals.pptx by AyushJaiswal781174
Digital Watermarking Of Audio Signals.pptxDigital Watermarking Of Audio Signals.pptx
Digital Watermarking Of Audio Signals.pptx
AyushJaiswal78117411 views
GDSC Mikroskil Members Onboarding 2023.pdf by gdscmikroskil
GDSC Mikroskil Members Onboarding 2023.pdfGDSC Mikroskil Members Onboarding 2023.pdf
GDSC Mikroskil Members Onboarding 2023.pdf
gdscmikroskil12 views
SUMIT SQL PROJECT SUPERSTORE 1.pptx by Sumit Jadhav
SUMIT SQL PROJECT SUPERSTORE 1.pptxSUMIT SQL PROJECT SUPERSTORE 1.pptx
SUMIT SQL PROJECT SUPERSTORE 1.pptx
Sumit Jadhav 12 views
SNMPx by Amatullahbutt
SNMPxSNMPx
SNMPx
Amatullahbutt16 views
MSA Website Slideshow (16).pdf by msaucla
MSA Website Slideshow (16).pdfMSA Website Slideshow (16).pdf
MSA Website Slideshow (16).pdf
msaucla64 views
DESIGN OF SPRINGS-UNIT4.pptx by gopinathcreddy
DESIGN OF SPRINGS-UNIT4.pptxDESIGN OF SPRINGS-UNIT4.pptx
DESIGN OF SPRINGS-UNIT4.pptx
gopinathcreddy19 views
fakenews_DBDA_Mar23.pptx by deepmitra8
fakenews_DBDA_Mar23.pptxfakenews_DBDA_Mar23.pptx
fakenews_DBDA_Mar23.pptx
deepmitra814 views
CHEMICAL KINETICS.pdf by AguedaGutirrez
CHEMICAL KINETICS.pdfCHEMICAL KINETICS.pdf
CHEMICAL KINETICS.pdf
AguedaGutirrez12 views
DevOps-ITverse-2023-IIT-DU.pptx by Anowar Hossain
DevOps-ITverse-2023-IIT-DU.pptxDevOps-ITverse-2023-IIT-DU.pptx
DevOps-ITverse-2023-IIT-DU.pptx
Anowar Hossain9 views
Machine Element II Course outline.pdf by odatadese1
Machine Element II Course outline.pdfMachine Element II Course outline.pdf
Machine Element II Course outline.pdf
odatadese18 views
NEW SUPPLIERS SUPPLIES (copie).pdf by georgesradjou
NEW SUPPLIERS SUPPLIES (copie).pdfNEW SUPPLIERS SUPPLIES (copie).pdf
NEW SUPPLIERS SUPPLIES (copie).pdf
georgesradjou15 views
MK__Cert.pdf by Hassan Khan
MK__Cert.pdfMK__Cert.pdf
MK__Cert.pdf
Hassan Khan10 views
2023Dec ASU Wang NETR Group Research Focus and Facility Overview.pptx by lwang78
2023Dec ASU Wang NETR Group Research Focus and Facility Overview.pptx2023Dec ASU Wang NETR Group Research Focus and Facility Overview.pptx
2023Dec ASU Wang NETR Group Research Focus and Facility Overview.pptx
lwang7852 views
What is Whirling Hygrometer.pdf by IIT KHARAGPUR
What is Whirling Hygrometer.pdfWhat is Whirling Hygrometer.pdf
What is Whirling Hygrometer.pdf
IIT KHARAGPUR 11 views
zincalume water storage tank design.pdf by 3D LABS
zincalume water storage tank design.pdfzincalume water storage tank design.pdf
zincalume water storage tank design.pdf
3D LABS5 views
Stone Masonry and Brick Masonry.pdf by Mohammed Abdullah Laskar
Stone Masonry and Brick Masonry.pdfStone Masonry and Brick Masonry.pdf
Stone Masonry and Brick Masonry.pdf
Mohammed Abdullah Laskar21 views
Instrumentation & Control Lab Manual.pdf by NTU Faisalabad
Instrumentation & Control Lab Manual.pdfInstrumentation & Control Lab Manual.pdf
Instrumentation & Control Lab Manual.pdf
NTU Faisalabad 5 views
Generative AI Models & Their Applications by SN
Generative AI Models & Their ApplicationsGenerative AI Models & Their Applications
Generative AI Models & Their Applications
SN6 views

Learning how AWS implement AWS VPC CNI