Kubernetes Networking in 4 Hours
Published by Pearson
Learn the ins and outs of networking on Kubernetes for any environment
- Learn the basics, intermediate, and advanced levels of Kubernetes networking (which is one of the most important pieces of Kubernetes)
- Understand how you can implement network observability practices in Kubernetes that aren’t available by default
- Learn how Kubernetes networking opens up a variety of opportunities for both application support, cluster management, and Day Two deployments.
Without networking, computers and systems can’t do much. There’s no communication, no security, and no ability to traverse any type of routing. Within Kubernetes, it’s no different. In fact, it’s actually a bit more complex as there’s both the internal Kubernetes network and the host network. Because of that, the importance of Kubernetes networking is absolutely crucial.
This course is designed to show you not only how to think about and implement proper networking capabilities in Kubernetes, but how to implement network observability. Combining both a proper overall network for production purposes and observability into the network will ensure you’re prepared for any Kubernetes implementation.
What you’ll learn and how you can apply it
By the end of the live online course, you’ll understand:
- How to deploy, troubleshoot, and manage all types of Kubernetes networks
- How to set up proper observability and monitoring for Kubernetes networking
- How to secure networks on Kubernetes and deploy them in production environments
And you’ll be able to:
- Install and configure security-centric Container Network Interfaces (CNI)
- Implement tools that help you with observability and monitoring for your network
- Secure and encrypt network traffic
- Deploy networking best practices to production
This live event is for you because...
- You want to properly implement Kubernetes in any production environment for a job you have or a job you want
- You want to secure networks for your internal Kubernetes resources and clusters/hosts because without it, environments won’t stay up for long
- You want to ensure that the environment (the networking) is performing as it’s supposed to in production
Prerequisites
- Minimum 1-2 years of Kubernetes knowledge
- Knowledge of developer tools like IDEs, code editors like VS Code, GitHub, etc.
Course Set-up
- A GitHub account to store your code when running exercises
- A cluster running in Azure Kubernetes Service (AKS), AWS Elastic Kubernetes Service (EKS), or both. Minikube will work for the majority of the labs as long as you deploy three Nodes.
- A code editor like VS Code or similar
Recommended Preparation
- Watch: Getting Started with Kubernetes, 3rd Edition by Sander van Vugt
- Watch: Kubernetes: From Basics to Guru by Sander van Vugt
- Read: Kubernetes Everywhere by Christopher Negus
- Attend: Kubernetes Monitoring and Observability by Michael Levan
Recommended Follow-up
- Attend: Securing Kubernetes For Production by Michael Levan
- Attend: Certified Kubernetes Administrator Crash Course by Sander van Vugt
Schedule
The time frames are only estimates and may vary according to how the class is progressing.
Segment 1: Kubernetes Networking (Host Networking) – 40 minutes
- Networking fundamentals
- Cloud networking
- Static Pod networking
- Lab: Cluster networking in the cloud (Azure or AWS)
- Q&A
Segment 2: Kubernetes Networking Internal Networking) – 40 minutes
- kube-proxy
- Container Network Interfaces (CNI)
- eBPF
- Pod networking
- Service networking
- CoreDNS
- Pod to Pod communication
- Service to Service communication
- Ingress
- Lab: Configuring Cilium and eBPF
- Q&A
Break (10 minutes)
Segment 3: Network Troubleshooting – 30 minutes
- IPAM on Kubernetes
- DNS Breakdown
- Host network troubleshooting
- CNI troubleshooting
- Port troubleshooting
- Pod troubleshooting
- Lab: Troubleshooting Pods and Services
- Q&A
Segment 4: Grafana observability stack – 45 minutes
- Why monitoring and observability
- Observability at the host and network level
- Observability inside of the cluster
- Lab: Configuring the Grafana stack
- Q&A
Break (10 minutes)
Segment 5: Observability with Kubeshark – 35 minutes
- What is KubeShark
- Installing KubeShark
- Monitoring API calls
- Tracing API calls
- Filtering
- WireShark and KubeShark
- Lab: Installing and configuring KubeShark
- Q&A
Segment 6: Service Mesh and Network Security – 20 minutes
- Service Mesh as a whole
- Linkerd and Istio
- Network latency
- Encryption with mTLS
- Lab:Implementing Network Policies
- Lab:Configuring Istio for Network Latency
- Q&A
Q&A (10 minutes)
Your Instructor
Michael Levan
Michael Levan is a seasoned engineer and consultant in the Kubernetes and Security space who spends his time working with startups and enterprises around the globe on Kubernetes consulting, training, and content creation. He is a trainer, 4x published author, podcast host, international public speaker, CNCF Ambassador, and was part of the Kubernetes v1.28 and v1.31 Release Team.