Labs
Lab π¬ A Practical kubernetes Operator using Ansible
Paid
Members
Public
Right around the time Red Hat [https://www.redhat.com/] was acquiring them, CoreOS [https://www.coreos.com/] announced the release of a new framework and development kit around a concept called βOperators [https://coreos.com/operators/]β. Since then, Operators have evolved into one of the best ways to effectively
Ansible
Paid
Members
Public
What's Ansible? Like Chef, Puppet or Salt, Ansible is a configuration management and provisioning tool. Ansible distinguishes two types of servers: controlling machines and nodes. First, there is a single controlling machine which is where orchestration begins. The controlling machine describes the location of nodes through its inventory.Nodes are
Istio Training 1 π¬ Learning the basics of Envoy
Paid
Members
Public
Learning the basics of Envoy Running Envoy In this lab we will dig into one of the foundational pieces of Istio, the "data plane" or service proxy. These live with each service/application instance on the request path on both origination of a service call as well as usually on
Istio Training 2 π¬ Installing Istio
Paid
Members
Public
Installing Istio In the previous lab we saw how Envoy works. We also saw that Envoy needs a control plane to configure it in a dynamic environment like a cloud platform built on containers or Kubernetes. Istio provides that control plane to drive the behavior of the network. Istio provides
Istio Training 3 π¬ Istio observability systems
Paid
Members
Public
Connecting To Observability Systems One of the most powerful parts of Istio is its ability to use the mesh to quickly troubleshoot and diagnose issues that inevitably come up in microservices networking. Where are requests slowing down? Where are they failing? Where are things becoming overloaded? Having something like Envoy
Istio Training 4 π¬ Creating An Ingress Gateway For Istio
Paid
Members
Public
Creating An Ingress Gateway For Istio Getting started with Envoy based technologies is best by starting small and iteratively growing. In this lab we will take a look at adopting Envoy at the edge with the Istio ingress gateway. The intention of the ingress gateway is to allow traffic into
Istio Training 5 π¬ Add Services to Istio
Paid
Members
Public
Add Services to Istio In this lab we will be gradually adding services to the Istio service mesh we installed in earlier labs. We will cover how to examine envoy configuration for your services, how to delay your application from starting until the sidecar proxy is ready, how to enable
Istio Training 6 π¬ Rollout mTLS to your services
Paid
Members
Public
Rollout mTLS to your services Istio can automatically encrypt traffic between services in the mesh with mutual TLS. For this to happen, both sides of the connection must be in the mesh and configured for mTLS. By default, with no configuration specified, Istio will adopt a "permissive" policy which means
