Technology

AllCommunityHow-ToReleaseTechnology
Kubernetes Network Policies Using Cilium - Controlling Ingress/Egress from Namespaces
Sep 20, 2018

Kubernetes Network Policies Using Cilium - Controlling Ingress/Egress from Namespaces

Kubernetes clusters are used by multiple tenants to run their containerized workloads. Often, the tenant workloads are mapped to namespaces and strict access control is required for inter-namespace communications. The access control could be needed for separation of concerns such as monitoring namespace vs application namespace; for compliance such as PCI vs non-PCI workloads; or to meet requirements of serving different end customers such as workloads serving Pepsi vs Coke. In this post, we will look at namespace based segmentation of traffic along with examples of allowing specific inter-namespace communications.

Technology
Aug 07, 2018

Istio 1.0: How Cilium enhances Istio with socket-aware BPF programs

Istio 1.0 was released last week. From the Cilium community, we would like to congratulate all Istio contributors for this massive effort. We have been fortunate to participate in the community by contributing to Istio and by helping several users moving towards production with Istio and Cilium.

Technology
Cilium - Rethinking Linux Networking and Security for the Age of Microservices
Apr 24, 2018

Cilium - Rethinking Linux Networking and Security for the Age of Microservices

To celebrate the Cilium project hitting 1.0, we wanted to take a moment to share the broader story behind how BPF and Cilium are driving the biggest change in the past two decades of Linux networking and security, and invite you to join in on the fun. We're just getting started!

Technology
Apr 17, 2018

Why is the kernel community replacing iptables with BPF?

The Linux kernel community recently announced bpfilter, which will replace the long-standing in-kernel implementation of iptables with high-performance network filtering powered by Linux BPF, all while guaranteeing a non-disruptive transition for Linux users.

Technology
Cilium Now Speaks gRPC!
Dec 06, 2017

Cilium Now Speaks gRPC!

The Cilium team is happy to announce tech preview support for gRPC-aware filtering!

Technology
Dec 05, 2017

What Cilium and BPF will bring to Istio

There is a lot of excitement around Istio this week at KubeCon. We are getting pinged multiple times a day now with questions on how exactly Cilium and Istio relate to each other. Istio abstracts away a lot of networking specific complexity and provides visibility and control to application teams. We couldn't agree more with the moving networking to Layer 7 and provide the necessary instruments for efficient operation at the layer where it makes sense:the application protocol. This blog post serves to answer a simple question:How is Istio related to Cilium? Can I use both together? Will one benefit from the other?

Technology
Nov 20, 2017

BPF Updates 13

The v4.15 merge window is open and LWN.net already has a summary on part 1 out. Which contains a BPF section listing some of the new things

Technology
Oct 25, 2017

BPF Updates 12

This is issue 12 of the regular newsletter around BPF written by Alexander Alemayhu. It summarizes ongoing development, presentations, videos and other information related to BPF and XDP. It is released roughly once a week.

Technology
Sep 18, 2017

BPF Updates 11

Linux 4.13 was released last week and net-next closed around the same time. The last `[GIT] Networking` pull request includes a couple of BPF fixes and so do the two after the merge window opened up as well. See the dates for all the details

Technology

Community

  • Slack

    For live conversation and quick questions, join the Cilium Slack workspace. Don’t forget to say hi!

    Join slack workspace

  • Twitter

    Follow Cilium on Twitter for the latest news and announcements.

    Follow Cilium on Twitter

  • Github

    Cilium uses GitHub tags to maintain a list of asked questions.

    Join Github