Uploaded byssuser74f457
PPTX, PDF98 views

Constructing Heterogeneous K8s control plane with Konnectivity (1).pptx

This document discusses building heterogeneous Kubernetes control planes where the control plane is separate from the worker nodes. It describes use cases like having edge worker nodes with a cloud-based control plane or running a single control plane for multiple clusters. It explains that the Kubernetes apiserver network proxy and Konnectivity components allow setting up a remote control plane by having agents on worker nodes connect bidirectionally to servers. This overcomes drawbacks of past approaches like SSH tunnels and allows co-locating a control plane to manage many clusters across hybrid cloud environments.

Embed presentation

Download to read offline
Constructing Heterogeneous K8s control plane with Konnectivity /K8s apiserver network proxy Tamil Vanan Tech Lead, Arcesium
Overview ● What? What you meant by “Heterogeneous/Remote control Plane” ● Why? Example use cases for Heterogeneous control plane ● How ? Building blocks and concepts to make this happen
Kubernetes control plane Communication between the controller < - > worker node ● Bidirectional ● Same datacenter/ Same L2/L3 network domain
Use cases ● Kubernetes at Edge - Worker nodes (e.g. resource-constrained) at edge, control plane in a cloud/datacenter ○ Internet of Things (IoT) and Edge Devices ○ Telecommunications and 5G Networks ○ Autonomous Vehicles ● Hybrid Cloud ○ Worker nodes on different platform / cloud than the control plane ○ Easy migration of worker-nodes between platforms ● Co-located control-plane for multiple clusters: ○ Easy operation for 100s / 1000s clusters
Co-located control-plane for multiple clusters ● Easy operation for 100s / 1000s clusters ● Same control-plane experience across different (hybrid) cloud platforms ● Fast cluster spin-up time - good for temporary / short-lived clusters ● Build your own Kubernetes as a service
Kubernetes Remote Control plane ● Kubernetes supported SSH tunnels in the past, deprecated at v1.9 ● VPN tunnels ● Drawbacks ○ Security implications ○ Vendor lock-in
SIG apiserver-network-proxy ● Agent opens the bi-directional connection to server ● Much like SSH reverse tunnels
Konnectivity components Controller configuration ● Egress Selector Configuration ● Konnectivity server setup Worker Node configuration ● Konnectivity agent setup
Thank you ● Slack #api-server-network-proxy ● References ○ https://github.com/kubernetes-sigs/apiserver-network-proxy ○ https://kubernetes.io/docs/concepts/architecture/control-plane- node-communication Contact: @tamilhce

More Related Content

PDF
Storytelling For The Web: Integrate Storytelling in your Design Process
byChiara Aliotta
 
PDF
2024 Trend Updates: What Really Works In SEO & Content Marketing
bySearch Engine Journal
 
PDF
CERN OpenStack Cloud Control Plane - From VMs to K8s
byBelmiro Moreira
 
PDF
KubeCon EU 2016: Creating an Advanced Load Balancing Solution for Kubernetes ...
byKubeAcademy
 
PDF
A Better Way for Applications to Communicate With Your Mesh
byOlyaSurits
 
PDF
Cncf k8s_network_03 (Ingress introduction)
byErhwen Kuo
 
PDF
Evolution of kube-proxy (Brussels, Fosdem 2020)
byLaurent Bernaille
 
PDF
Streamlining Wasm Deployment in Kubernetes with SpinKube.pdf
byssuser74f457
 
Storytelling For The Web: Integrate Storytelling in your Design Process
byChiara Aliotta
 
2024 Trend Updates: What Really Works In SEO & Content Marketing
bySearch Engine Journal
 
CERN OpenStack Cloud Control Plane - From VMs to K8s
byBelmiro Moreira
 
KubeCon EU 2016: Creating an Advanced Load Balancing Solution for Kubernetes ...
byKubeAcademy
 
A Better Way for Applications to Communicate With Your Mesh
byOlyaSurits
 
Cncf k8s_network_03 (Ingress introduction)
byErhwen Kuo
 
Evolution of kube-proxy (Brussels, Fosdem 2020)
byLaurent Bernaille
 
Streamlining Wasm Deployment in Kubernetes with SpinKube.pdf
byssuser74f457
 

Recently uploaded

PDF
Data Virtualization in Action: Scaling APIs and Apps with FME
bySafe Software
 
PDF
CompTIA Cybersecurity Analyst (CySA+) CS0-003: Unit 5
byVICTOR MAESTRE RAMIREZ
 
PDF
Lab 1.5 - Sharing Secrets with GPG ~ 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
PDF
Workshop on Sustaining & Growing Open Source Communities - GAS2025
bySammy Fung
 
PDF
AI Powered Document Processing and Data Extraction
byRobert McDermott
 
PDF
WCAG Analyzer Tools and Techniques for User-Friendly Websites
byAccessibility Analyzer
 
PDF
Real-Time Data Insight Using Microsoft Forms for Business
byElevate
 
PPTX
Technology Consulting _ by Slidesgo.pptx
byfh82277
 
PDF
WHITE PAPER_ Ransomware Payment Policy and Resilience Strategy_ A Framework f...
byssuser0d171c
 
PDF
10 Things AI-First Apps Do Differently by iProgrammer Solutions
byiProgrammer Solutions Private Limited
 
PDF
How to Evaluate a High Performance Database
byScyllaDB
 
PPTX
wob-report.pptxwob-report.pptxwob-report.pptx
byssuser0d171c
 
DOCX
iRobot Post‑Mortem and Alternative Paths - Discussion Document for Boards and...
byDave Litwiller
 
PPTX
MGw_MRS Benfits seu beficios de redes 4g
byJoaquimBarros18
 
PDF
Six Shifts For 2026 (And The Next Six Years)
byDavid Armano
 
PDF
100 Insights After the 200th Issue of NewMind AI Journal
byNewMind AI
 
PDF
HCSP-Presales-Campus Network Planning and Design V2.0
byVeronica916344
 
PDF
Security Forum Sessions from Houston 2025 Event
byMark Simos
 
PPTX
Emancipatory Information Retrieval: Radically Reorienting Information Retriev...
byBhaskar Mitra
 
PDF
Dev Dives: AI that builds with you - UiPath Autopilot for effortless RPA & AP...
byUiPathCommunity
 
Data Virtualization in Action: Scaling APIs and Apps with FME
bySafe Software
 
CompTIA Cybersecurity Analyst (CySA+) CS0-003: Unit 5
byVICTOR MAESTRE RAMIREZ
 
Lab 1.5 - Sharing Secrets with GPG ~ 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
Workshop on Sustaining & Growing Open Source Communities - GAS2025
bySammy Fung
 
AI Powered Document Processing and Data Extraction
byRobert McDermott
 
WCAG Analyzer Tools and Techniques for User-Friendly Websites
byAccessibility Analyzer
 
Real-Time Data Insight Using Microsoft Forms for Business
byElevate
 
Technology Consulting _ by Slidesgo.pptx
byfh82277
 
WHITE PAPER_ Ransomware Payment Policy and Resilience Strategy_ A Framework f...
byssuser0d171c
 
10 Things AI-First Apps Do Differently by iProgrammer Solutions
byiProgrammer Solutions Private Limited
 
How to Evaluate a High Performance Database
byScyllaDB
 
wob-report.pptxwob-report.pptxwob-report.pptx
byssuser0d171c
 
iRobot Post‑Mortem and Alternative Paths - Discussion Document for Boards and...
byDave Litwiller
 
MGw_MRS Benfits seu beficios de redes 4g
byJoaquimBarros18
 
Six Shifts For 2026 (And The Next Six Years)
byDavid Armano
 
100 Insights After the 200th Issue of NewMind AI Journal
byNewMind AI
 
HCSP-Presales-Campus Network Planning and Design V2.0
byVeronica916344
 
Security Forum Sessions from Houston 2025 Event
byMark Simos
 
Emancipatory Information Retrieval: Radically Reorienting Information Retriev...
byBhaskar Mitra
 
Dev Dives: AI that builds with you - UiPath Autopilot for effortless RPA & AP...
byUiPathCommunity
 

Featured

PDF
Artificial Intelligence, Data and Competition – SCHREPEL – June 2024 OECD dis...
byOECD Directorate for Financial and Enterprise Affairs
 
PDF
How to Leverage AI to Boost Employee Wellness - Lydia Di Francesco - SocialHR...
bySocialHRCamp
 
PDF
2024 State of Marketing Report – by Hubspot
byMarius Sescu
 
PDF
Everything You Need To Know About ChatGPT
byExpeed Software
 
PDF
Product Design Trends in 2024 | Teenage Engineerings
byPixeldarts
 
PDF
How Race, Age and Gender Shape Attitudes Towards Mental Health
byThinkNow
 
PDF
AI Trends in Creative Operations 2024 by Artwork Flow.pdf
bymarketingartwork
 
PDF
Skeleton Culture Code
bySkeleton Technologies
 
PDF
PEPSICO Presentation to CAGNY Conference Feb 2024
byNeil Kimberley
 
PDF
Content Methodology: A Best Practices Report (Webinar)
bycontently
 
PPTX
How to Prepare For a Successful Job Search for 2024
byAlbert Qian
 
PDF
Social Media Marketing Trends 2024 // The Global Indie Insights
byKurio // The Social Media Age(ncy)
 
PDF
Trends In Paid Search: Navigating The Digital Landscape In 2024
bySearch Engine Journal
 
PDF
5 Public speaking tips from TED - Visualized summary
bySpeakerHub
 
PDF
ChatGPT and the Future of Work - Clark Boyd
byClark Boyd
 
PDF
Getting into the tech field. what next
byTessa Mero
 
PDF
Google's Just Not That Into You: Understanding Core Updates & Search Intent
byLily Ray
 
PDF
How to have difficult conversations
byRajiv Jayarajah, MAppComm, ACC
 
PDF
Introduction to Data Science
byChristy Abraham Joy
 
PDF
Time Management & Productivity - Best Practices
byVit Horky
 
Artificial Intelligence, Data and Competition – SCHREPEL – June 2024 OECD dis...
byOECD Directorate for Financial and Enterprise Affairs
 
How to Leverage AI to Boost Employee Wellness - Lydia Di Francesco - SocialHR...
bySocialHRCamp
 
2024 State of Marketing Report – by Hubspot
byMarius Sescu
 
Everything You Need To Know About ChatGPT
byExpeed Software
 
Product Design Trends in 2024 | Teenage Engineerings
byPixeldarts
 
How Race, Age and Gender Shape Attitudes Towards Mental Health
byThinkNow
 
AI Trends in Creative Operations 2024 by Artwork Flow.pdf
bymarketingartwork
 
Skeleton Culture Code
bySkeleton Technologies
 
PEPSICO Presentation to CAGNY Conference Feb 2024
byNeil Kimberley
 
Content Methodology: A Best Practices Report (Webinar)
bycontently
 
How to Prepare For a Successful Job Search for 2024
byAlbert Qian
 
Social Media Marketing Trends 2024 // The Global Indie Insights
byKurio // The Social Media Age(ncy)
 
Trends In Paid Search: Navigating The Digital Landscape In 2024
bySearch Engine Journal
 
5 Public speaking tips from TED - Visualized summary
bySpeakerHub
 
ChatGPT and the Future of Work - Clark Boyd
byClark Boyd
 
Getting into the tech field. what next
byTessa Mero
 
Google's Just Not That Into You: Understanding Core Updates & Search Intent
byLily Ray
 
How to have difficult conversations
byRajiv Jayarajah, MAppComm, ACC
 
Introduction to Data Science
byChristy Abraham Joy
 
Time Management & Productivity - Best Practices
byVit Horky
 

Constructing Heterogeneous K8s control plane with Konnectivity (1).pptx

  • 1.
    Constructing Heterogeneous K8s controlplane with Konnectivity /K8s apiserver network proxy Tamil Vanan Tech Lead, Arcesium
  • 2.
    Overview ● What? What youmeant by “Heterogeneous/Remote control Plane” ● Why? Example use cases for Heterogeneous control plane ● How ? Building blocks and concepts to make this happen
  • 3.
    Kubernetes control plane Communicationbetween the controller < - > worker node ● Bidirectional ● Same datacenter/ Same L2/L3 network domain
  • 4.
    Use cases ● Kubernetesat Edge - Worker nodes (e.g. resource-constrained) at edge, control plane in a cloud/datacenter ○ Internet of Things (IoT) and Edge Devices ○ Telecommunications and 5G Networks ○ Autonomous Vehicles ● Hybrid Cloud ○ Worker nodes on different platform / cloud than the control plane ○ Easy migration of worker-nodes between platforms ● Co-located control-plane for multiple clusters: ○ Easy operation for 100s / 1000s clusters
  • 5.
    Co-located control-plane formultiple clusters ● Easy operation for 100s / 1000s clusters ● Same control-plane experience across different (hybrid) cloud platforms ● Fast cluster spin-up time - good for temporary / short-lived clusters ● Build your own Kubernetes as a service
  • 6.
    Kubernetes Remote Controlplane ● Kubernetes supported SSH tunnels in the past, deprecated at v1.9 ● VPN tunnels ● Drawbacks ○ Security implications ○ Vendor lock-in
  • 7.
    SIG apiserver-network-proxy ● Agentopens the bi-directional connection to server ● Much like SSH reverse tunnels
  • 8.
    Konnectivity components Controller configuration ●Egress Selector Configuration ● Konnectivity server setup Worker Node configuration ● Konnectivity agent setup
  • 9.
    Thank you ● Slack#api-server-network-proxy ● References ○ https://github.com/kubernetes-sigs/apiserver-network-proxy ○ https://kubernetes.io/docs/concepts/architecture/control-plane- node-communication Contact: @tamilhce