Network

Predictable Network Traffic in Kubernetes

<p>The software applications of the Cloud Native era have a huge dependency on the network, these microservices are bound to a single concern and utilize the network to communicate with each other. The dependency on the network continues to grow as more and more microservices depend on it. However, there is no way to predictably leverage the network for the specific demands of your application. What if we could tag certain applications as needing a priority from the network. This would enhance the networking capabilities offered from Kubernetes and compliment the deployment of applications that require predictable behavior of the network.</p>
More industries are migrating to Kubernetes and evolving their knowledge of the Cloud Native ecosystem. As this trend accelerates, apps with specialized requirements are emerging, such as high-priority apps. High-priority apps require predictable high performance, which can be difficult to achieve in clusters with 100s or 1000s of containers. They require and expect platform capabilities such as dedicated resources, less context switching, and efficient packet processing. In the context of the network, high-priority apps need to execute predictably, leaving no room for extra jitter. Pinning CPU cores may help with determinism but introduces a platform-specific mechanism that fails to embrace the abstraction of Cloud Native deployments. This presentation will cover application-specific queuing and steering technology that dedicates hardware NIC queues to application-specific threads of execution.

Additional information

Type devroom

More sessions

2/6/22
Network
Luca Deri
D.network
<p>Security and monitoring applications need to classify traffic in order to identify applications protocols, misuses, similarities, communications patterns not easily identifiable by hand. nDPI is a library that implements various algorithms for traffic analysis able to detect outliers, anomalies, traffic clusters, behavioural changes efficiently in streaming (i.e. while traffic is flowing). Goal of this presentation is to show how nDPI can be used in real life to inspect network traffic and ...
2/6/22
Network
D.network
<p>A rules-based approach has been the standard in network monitoring for many years, for a good reason. In this talk, we'll recap the advantages of a rule-based approach and how it's still relevant to this day. The speaker will also show how you can implement rules using <a href="https://checkmk.com/">Checkmk</a>, an open source IT monitoring software and discuss the entry of AI technology into infrastructure monitoring.</p>
2/6/22
Network
Max Leonard Inden
D.network
<p><a href="https://libp2p.io">libp2p</a> is a universal, cross-platform, multi-language, modular peer-to-peer networking library powering multiple large-scale networks, for example IPFS.</p> <p>In the first part of the talk we’ll present the basic building blocks of the library and explain how they fit together. In the second part, we’ll take a closer look at the recently added decentralized hole punching feature, allowing NAT and firewall traversal without the need for any central ...
2/6/22
Network
D.network
<p><a href="https://fd.io/">VPP (aka Vector Packet Processing)</a> is a fast network stack running in Linux userspace. It is designed to handle packets with high performance, which makes gathering statistics efficiently a must have.</p> <p>The model that has been chosen in <a href="https://fd.io/">VPP</a> to provide up to date statistics is built upon shared memory and optimistic locking. The counters are updated in this shared memory at a rather low cost by the data plane and can be read out at ...
2/6/22
Network
Nathan Brown
D.network
<p><a href="https://www.dpdk.org">DPDK</a> added a RCU library with a novel method to reclaim resources. We have been running tests to understand the performance differences between the <a href="https://www.dpdk.org">DPDK</a> RCU and the <a href="https://liburcu.org/">user space RCU library</a>. In our tests, we find that <a href="https://www.dpdk.org">DPDK</a> RCU can perform reclamation faster and perform significantly better when pre-emptive readers are involved. Other than the performance, ...
2/6/22
Network
Pim van Pelt
D.network
<p>In this talk, we will demonstrate high performance routing using open-source <a href="https://fd.io">VPP</a> and it's underlying <a href="https://dpdk.org">Data Plane Development Kit</a>. This talk highlights the authors work on integrating the Linux ControlPlane which makes BGP, OSPF, etc available with VPP. We'll then turn to a popular DPDK based loadtesting tool <a href="https://trex-tgn.cisco.com">TRex</a>, and discuss performance benchmarking results from the field using the author's <a ...
2/6/22
Network
Orlin Vasilev
D.network
<p>Contour is an open source Kubernetes Ingress controller providing the Control Plane for the Envoy Edge and Service proxy. Contour supports dynamic configuration updates and multi-team Ingress delegation out of the box while maintaining a lightweight profile. Contour is currently CNCF Incubating project!</p> <h1>In this talk:</h1> <p>We will do a Contour 101 intro, do a short demo of some of the deployment methods for Contour inside a Kubernetes cluster, demonstrate some of Contour's main ...