Kubernetes is everywhere and can support many interesting use-cases for hosting services.
This talk is based on my experience as a Unix, Internet and Security person with researching K8s over some years and setting up my own infrastructure with Kubernetes in a small production setup. The main points in the talk are:
-
Why would you run K8s on-premise, being appropriately paranoid and a control freak
-
How do you bring up a bare-metal test-cluster using Kubeadm
-
Selecting Cilium as the network plugin - and listing some of the most basic features
-
Connecting your cluster to the outside world with BGP
-
Running a small set of services based on Nginx as ingress controller, and Nginx serving applications (very boring static sites generated using Jekyll)
-
Benchmarking and auditing your K8s cluster
The talk is based on my experiences, and I would love to discuss more K8s security before and after, and will be at BornHack all week.
Speakers for Kubernetes Security for Unix people running on-premise K8s:
Metadata for Kubernetes Security for Unix people running on-premise K8s
To be recorded: YesURLs for Kubernetes Security for Unix people running on-premise K8s
No URLs found.
Schedule for Kubernetes Security for Unix people running on-premise K8s
- Sunday, Jul 21st, 2024, 17:00 (CEST) - Sunday, Jul 21st, 2024, 18:00 (CEST) at Speakers Tent