This Saturday you will find me in Brussels at FOSDEM for the first ever eBPF Dev Room! If you don't know FOSDEM, it is the largest open source conference in the world that itself is run like an open source project with no registration and thousands of people volunteering to make it happen. I love FOSDEM because it showcases how much you can get done with just passionate people wanting to create something cool.
View in browser
echo-newsletter-74

eCHO news is your bi-weekly wrap up of all things eBPF and Cilium. If you want to keep up on the latest in cloud native networking, observability, and security this is your quelle

28th January 2025

 

This Saturday you will find me in Brussels at FOSDEM for the first ever eBPF Dev Room! If you don't know FOSDEM, it is the largest open source conference in the world that itself is run like an open source project with no registration and thousands of people volunteering to make it happen. I love FOSDEM because it showcases how much you can get done with just passionate people wanting to create something cool.

 

The eBPF Dev Room schedule shows just how far we have come as an ecosystem ranging from the rewriting scheduling to GPU profiling to rolling out netkit to millions of containers at Meta. We'll have stickers and a few books if you mention the newsletter. I'm also happy to meet anyone that wants to chat about eBPF too, just reply to this email or message me on any platform. If you can't find me anywhere else, I'll be giving a talk in the community room on Saturday and following the state of FOSS funding on Sunday. I have to finish writing my talk so let’s 🐝 -gin.

The Technical

Kubernetes Network Policies Done the Right Way – A Comprehensive Guide

eBook on striking the balance between security and innovation

 

Go, C, Rust, and More: Picking the Right eBPF Application Stack

Deciding which language and library to use

 

Cilium으로 구현하는 FQDN 기반 Kubernetes 네트워크 정책

Cilium network policies in Korean

 

eBPF-Based Network Observability: Exploring Cilium Hubble and Alternatives

Learn to set up and monitor Hubble

 

acassen/fastswan

"Linux Kernel XFRM offload via eBPF/XDP"

 

patrickpichler/beesting

"Inject and monitor honey tokens into a kubernetes workload" with eBPF

 

xmigrate/blxrep

"eBPF based sector level disk replication tool for disaster recovery purpose"

🐝

 

The Ecosystem

Case Study: Polar Signals Uses eBPF to Monitor Internal Cross-Zone Network Traffic on Kubernetes, Reducing These Operating Costs by 50%

"For this use case, eBPF’s low overhead, flexibility, and ease of implementation were key factors"

 

Networking and eBPF Predictions for 2025 and Beyond

I agree with 8/10, can you guess which ones?

 

Strobelight: A profiling service built on open source technology

Saving 15k servers with eBPF

 

eBPF Tool Identifies Cross-Zone Kubernetes Network Traffic

"They turned to eBPF to deliver the answers, and cut their cloud bill in half" Also covered by The Stack

 

Sched-ext Scheduler Contest FOSDEM’25

Craft the ultimate schedule and win prizes

 

Streamlining Tetragon Deployment with Amazon EC2 Image Builder

"With pre-installed Tetragon deployed in every instance, businesses gain immediate protection and eliminate gaps in monitoring"

 

eBPF Basics: A Guide to the Next Evolution in Systems Programming

Intro to eBPF with different program types

🐝

 

The How To

Egress traffic blocking with Cilium cluster-wide network policies on Azure Kubernetes Service

Learn to prevent to network traffic going to malicious network entities and the latest scalability upgrades for it

 

Automating high performance Kubernetes deployments on-prem (with Ansible, Cilium BGP and Longhorn on k8s v1.32)

"I chose the above technologies because I think they’re the best tools for the job"

 

Building a Globally Distributed WebRTC Service with Elixir WebRTC, STUNner, and Cilium Cluster Mesh

Building Broadcaster on multiple Kubernetes clusters for low latency

 

Kubernetes BGP Connectivity with a UniFi router

BGP + Gateway API for Kubernetes Ingress

🐝

 

The Video

Imagine Learning's Secret to Seemless User Experiences

It's all about the kernel level data that Cilium can provide

 

Introduction to eBPF and Cilium | Exploring the Technology & Joining the Community ft. Bill Mulligan

Interview recorded at KubeCon India

 

Gaming under pressure: enhancing the Linux gaming experience with sched_ext

60 fps gaming while compiling a kernel

🐝

 

The Events

eBPF Dev Room at FOSDEM

February 1st in Brussels

 

Cilium and Cisco ACI: Best of Both Worlds

February 25th, online webinar

 

bpfconf

CfP now open for the invite only event on March 24-26 in Montreal

 

CiliumCon EU

April 1st in London, this is not a joke! Full Schedule out now

🐝 

The Livestreams

eCHO Episode 167:

Using ekcstl to disable kube-proxy and install cilium natively

eCHO Episode 167: Using ekcstl to disable kube-proxy and install cilium natively

  

eCHO Episode 168:

BPF Tokens

 

eCHO Episode 168: BPF Tokens

Upcoming Stream

eCHO Episode 169: TBD

The Post of the Week

“They don’t even have Cilium network policies in place”

As always, if you’ve seen a blog post, a tool, or anything else eBPF or Cilium related that you think the rest of the community should hear about, send them my way. You can either hit reply or join the #echo-news channel on Cilium Slack. You can also find all of the past episodes on the website.

🐝

To make sure you keep getting these emails, please add bill@isovalent.com to your address book or otherwise mark me as a permitted sender.

 

Know a friend that needs to be in the know? Forward this to them

Was this forwarded to you? Sign up today!

Written and sent by Bill Mulligan. Any feedback is welcome!

KC+CNC_NA_Headshot_241114_William_Mulligan_8154 (1)

I work for Isovalent at Cisco which is leading the eBPF-Powered Revolution in Cloud Native Networking, Observability, and Security with Cilium and Tetragon

logo-wordmark-isovalent-vertical-dark@2x
LinkedIn
X

Cisco/Isovalent, LLC, 755 Sycamore Drive, Milipitas, CA 95035, United States

Unsubscribe Manage preferences