Excellence in Software Engineering
SERVICES

Cilium

Home | Services | Cilium

Cloud Native Infrastructure Management

eBPF-based Networking, Observability & Security

Note: Branding: https://cilium.io/brand/

Networking

Service Load Balancing

Kubernetes doesn’t come with an implementation of Load Balancing. Cilium can attract this traffic with BGP and accelerate leveraging XDP and eBPF.

Scalable Kubernetes CNI

Cilium’s data plane uses eBPF for efficient load-balancing and incremental updates, avoiding the pitfalls of large iptables rulesets. Cilium’s control plane is highly optimized, running in Kubernetes clusters of up to 5K nodes and 100K pods.

Multi-cluster Connectivity

Cilium Cluster Mesh creates a single zone of connectivity between nodes across multiple clusters without requiring proxies

Observability

Identity-aware Visibility

eBPF for a native understanding of Kubernetes label identity (for pods) and DNS-aware identity (for external workloads)

Advanced Self Service Observability

When troubleshooting connectivity between applications in an environment like Kubernetes, Cilium uses eBPF to accelerate getting data in and out of L7 proxies such as Envoy, while gathering process context at the kernel layer.

Network Metrics + Policy Troubleshooting

Building on rich identity, Cilium provides Prometheus compatible metrics for L3/L4 and L7 network flow data

Security

Transparent Encryption

Highly efficient IPsec capabilities built into the Linux kernel to automatically encrypt communications between all workloads within, or between, Kubernetes clusters.

Security Forensics + Audit

IPs and ports are nearly meaningless for network security forensics and audit, given that identity in a Kubernetes cluster is highly dynamic. The identity-aware network flow logs and process context from Cilium’s Hubble can be stored to enable long-term forensics of network connectivity

Advanced Network Policy

Cilium implements basic Kubernetes Network Policy (e.g. Label + CIDR matching) but also uses its identity-aware and application aware visibility to enable both DNS-aware policies (e.g. allow to *.google.com) and application aware policies (e.g. allow HTTP GET /foo). Cilium also supports cluster-wide network policy, and host-layer firewalling.

Case Study

We believe your challenge will lead us to a success story.

Wacom

Web and Mobile Technologies

Whoop

Web and Mobile Technologies

Workit.biz | Your Digital Office

Telecommunications

We share our expertise.

Related Blog Posts

Mobile Development

August 04, 2021 | Web Applications

App Store Optimization (ASO)

April 28, 2021 | Web Applications

Boost your Memory with Drawing

June 14, 2017 | UX & UI Design

Web Trends in 2017

May 03, 2017 | Web Applications

Navigation
25+ years Experience


EN - TR