Name: Securing Cluster Networking with Network Policies - Ahmet Balkan, Google
Start: 2017-12-07T15:50:00-0600
End: 2017-12-07T16:25:00-0600

Back To Schedule

Securing Cluster Networking with Network Policies - Ahmet Balkan, Google

In a secure microservices cluster, you should only have the pods that need to communicate with each other to be able to establish network connections, and block all others. But how? Until recently, Kubernetes users could not enforce policies for container networking.

First introduced in Kubernetes 1.3, Network Policies are now a stable feature in Kubernetes 1.7. In this talk, we will discuss use cases for network policies, the Network Policy API, how to configure network policies, and how the configured policies are enforced. We will also present some network policies that address some common use cases and are relevant to securing your Kubernetes clusters.

Also, we will discuss the roadmap for Network Policies feature, other methods you can use to secure applications at network and application layers, and how Network Policies relate to service mesh projects such as Istio that offer similar functionality.

Speakers

Ahmet Alp Balkan

Software Engineer, Google

Ahmet Alp Balkan is a Software Engineer at Google, working on developer experiences for open source technologies like Kubernetes and Knative. He is the maintainer of developer tooling like kubectx.dev and krew.dev, which is a Kubernetes SIG CLI sub-project. At Google, he works on... Read More →

ahmetb KubeCon 2017 NA – Network Policies pdf

Thursday December 7, 2017 3:50pm - 4:25pm CST
Ballroom C, Level 1

Operations - KubeCon

Link to Session Recording https://youtu.be/3gGpMmYeEO8

KubeCon + CloudNativeCon North America 2017

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Ahmet Alp Balkan