The Technical
Next-Generation Mutual Authentication with Cilium Service Mesh
"We want the better authentication granularity of service identities, the properties of the TLS handshake and combine that with the transparency, performance, and wide support of different network protocols of a network-based authentication approach."
Hunting Down an Intermittent Failure in Cilium
Networking is tricky, especially when it isn't DNS. Learn how Superorbital diagnosed, identified, and help resolve a rather tricky intermittent bug
Intro to BPF CO-RE
"BPF CO-RE helps creating a stand alone binary that acts as a carrier of your BPF program, its loader and its processor" learn how to do it in the article
BPFDoor — an active Chinese global surveillance tool
"It allows a threat actor to backdoor a system for remote code execution, without opening any new network ports or firewall rules"
Kepler (Kubernetes Efficient Power Level Exporter)
"uses eBPF to probe energy related system stats and exports as Prometheus metrics"
Kindling-project/kindling
"an eBPF-based cloud-native monitor tool, which aims to help users understand the app behavior from kernel to code stack" seem to be popping up everywhere these days
Analyzing Postgres performance problems using perf and eBPF
Database monitoring and analysis coming to an eBPF near you
CNCF On-Demand Webinar: Optimizing Service Mesh with eBPF
Learn how much Istio loves eBPF
🐝
The Ecosystem
Meet the Maintainer - Laurent Bernaille
Learn about one of the people behind Cilium and how microwaves power financial transactions
Brendan@Intel.com
"I can work on new performance and debugging technologies for everything from apps down to silicon, across all xPUs" Intel gained a titan
LineageOS 19
"Even something as close to version 4.9 as 4.4 proved challenging due to the sheer number of commits and structure changes in BPF’s introduction" everyone is struggling to keep up with the pace of innovation in eBPF
How We Test Our eBPF Traffic Capturing Tool at Seekret
"With libbpf+CO-RE, we have fewer portability issues, so adding more distributions and kernels to our testing matrix is easy" have to love good community tools
Cilium Talks at KubeCon EU 2022
No less than 11 talks at KubeCon. Love to see the love for Cilium in the community ❤️
🐝
The How To
This section is left intentionally blank. Seems everyone is busy getting ready for KubeCon rather than writing How Tos.
In that light, I will be taking a break after KubeCon so the next edition will ship May 31st rather than the 24th. Come say hi if you are at KubeCon, I'll have Cilium and eBPF stickers. There will also be no eCHO livestream next week too because of KubeCon.
🐝
The Events
Cilium Talks at KubeCon EU 2022
Yes, I'm putting this in twice. It's exciting, I wrote it, and I'm sending the newsletter
Cilium Tech Talk Series
The team at Isovalent will be covering Service Mesh, eBPF based security observability with Tetragon (you heard it here first 😉), and a review of KubeCon on May 25th
Abre Los Ojos: The Official Observability Celebration
If you miss me at the Cilium booth, come find me here for stickers and trading cards (you heard it here first too 🤫)
2nd eBPF IL meetup in Tel Aviv
Learn about Pixie, "Zero-Instrumentation" observability with eBPF, and Triaging Real Time Security Threats with eBPF this week in Tel Aviv
How Meltwater migrated from the Amazon VPC CNI plugin to Cilium in K8s
Hear how Meltwater migrated 40+ teams, running 3000+ deployments, and 10000+ pods utilising more than 8000 cores and 18TB memory to Cilium on May 10th
🐝
