eBPF and Cilium Accelerator for Cloud Native Connectivity

CS and Isovalent only vertical

What is it?

Adopting Cloud Native technologies and application architecture has enabled organisations to accelerate their application delivery. However, the proliferation of services creates critical networking, observability, and security challenges for platform teams.
 
eBPF and Cilium solve these challenges with comprehensive insights, fine-grained control, and simplified operations, including multi-tenant and multi-cluster setups in the cloud, without additional sidecar containers that add complexity and use unnecessary cloud resources.
 
This Container Solutions Accelerator for eBPF & Cilium reduces time to a production-ready installation built to your specific requirements. The final step includes documentation and a review handover for knowledge transfer and enablement of your team.

But isn’t my cloud provider giving me connectivity?

Cloud providers offer basic connectivity features with an IP-based network policy. Cilium provides identity-aware security and observability, which dramatically simplifies the creation, maintenance, and troubleshooting of network policies while at the same time providing rich context to the event logs. Cilium enables advanced Cloud Native network policies to micro-segment services and tenants. This ensures zero-trust and allows support for advanced DNS and HTTP policies.

What are we solving for you?

  • Secure connectivity with fine-grained control of network connections without relying only on IPs and ports, enabling advanced zero-trust network policies.
  • Deep observability from OS to application level with insights into the stack without the need for sidecar containers
  • Scaling challenges for your mission-critical infrastructure across clouds and clusters
  • Latency issues and problems for the CNI plugin in maintaining a consistent state of iptables rules across all cluster nodes
  • Insufficient networking insights with traditional, iptables-based CNI plugins

How does it work? - The Delivery

Phase 1: Orientation

  • Investigate the current setup and operational efficiency
  • Review project maturity
  • Align business and operational goals
  • Understand how people, processes, methodology, and technology interact
  • Create a prioritised list of work items for improvements

Phase 2: Implementation

  • Install Cilium on one Kubernetes environment
  • Adapt Cilium to the environment using best practices
  • Configure Hubble with role-based access control
  • Configure required metrics and flows for export to SIEM or Prometheus/Grafana with the setup of Grafana dashboards.
  • Configuration of Hubble Timescape
  • Configure Cilium Service Mesh
  • Observe and secure an application using Hubble based on observed flows 
  • Define and establish enforcement strategy with team members 
  • Define a process to ensure observability
  • Set up advanced Cloud Native observability concept for metrics, logs, and traces.

Phase 3: Celebration

  • Documentation 
  • Delivery review: What has been achieved?
  • Tangible results: How have connectivity and observability improved?
  • Discuss further improvements in reliability, observability, service mesh, security, and microservice architecture

The world is changing fast.
The only way to survive it is to build for it.

Talk to our Experts

Book your 15 min 1:1 with:

felix_round

Felix Evert
Global Partnerships Manager

Book a meeting

Let’s take the next step together

 

Fill in the form to request a detailed quotation