Thoughts from the clouds
This post will explore the new support in Azure Application Gateway for Containers (AGC) for the overlay network option in Azure Kubernetes Service (AKS) as documented in https://aka.ms/agc/overlay, as well as whether you can see traffic between AGC and AKS with VNet Flow Logs. This blog is part of a series: What am I talking … Continue reading Application Gateway for Containers: a not-so-gentle intro (4)
This post will take you one step further from the hello-world configuration that I described in the first post by adding TLS end-to-end, a scenario described in the public docs here. This blog is part of a series: TL;DR If you don’t have much time the diagram below, which is an extended version of the … Continue reading Application Gateway for Containers: a not-so-gentle intro (3)
Have you ever have the feeling that something that should be easy turns into a mine field when you start working on it? I seem to be a specialist in not reading the required documentation and making rookie mistakes. Fortunately, Application Gateway for Containers (AGC) offers enough troubleshooting tools so that I could identify and … Continue reading Application Gateway for Containers: a not-so-gentle intro (2)
I haven’t had a look at the Azure Application Gateway for Containers for a while now, and after I was recently asked about it I decided to go for another dive. I believe I found a couple of interesting things that would be worthy to share, so here we go. This blog post is part … Continue reading Application Gateway for Containers: a not-so-gentle intro (1)
If you are following the Azure Kubernetes Service space, I am sure you noticed that Azure CNI powered by Cilium is Generally Available. But is this a big thing? What does it mean for you? Well, yes, it is big indeed. It is like changing the wheels of your car to new ones: Cilium is … Continue reading Cilium Network Policy in AKS
In this part 5 of the series of posts on ARO networking we are going to create a second pair of routers in order to expose applications both internally and externally. Other parts of this blog series include: Part 1: Intro and SDN Plugin Part 2: Internet and Intra-cluster Communication Part 3: Inter-Project and Vnet … Continue reading A day in the life of a Packet in Azure Redhat Openshift (part 5)
This is part 3 of a blog series around networking in Azure Redhat Openshift, and we will see how pods talk to each other inside of the cluster and to other systems in the virtual Network or on-premises. Other posts in the series: Part 1: Intro and SDN Plugin Part 2: Internet and Intra-cluster Communication … Continue reading A day in the life of a packet in Azure Redhat Openshift (part 3)
Hey there, welcome to yet another instance of the wonderful networking world of Kubernetes. Today I will explore some new cool stuff that recently came to Azure Kubernetes Service (AKS), plus one thing I did not have in previous blogs. First things first, this is a blog series, you can find previous installments here: Part … Continue reading A Day in the Life of a Packet in AKS (part 4): NSGs
This post is a continuation from Part 4: NSGs. Other posts in this series: Part 1: deep dive in AKS with Azure CNI in your own vnet Part 2: deep dive in AKS with kubenet in your own vnet, and ingress controllers Part 3: outbound connectivity from AKS pods Part 4: NSGs with Azure CNI … Continue reading A Day in the Life of a Packet in AKS (part 5): Virtual Node
This post is a continuation from Part 5: Virtual Node. Other posts in this series: Part 1: deep dive in AKS with Azure CNI in your own vnet Part 2: deep dive in AKS with kubenet in your own vnet, and ingress controllers Part 3: outbound connectivity from AKS pods Part 4: NSGs with Azure … Continue reading A Day in the Life of a Packet in AKS (part 6): Network Policy
Cloudtrooper 