Project Calico enables networking and network policy in Kubernetes clusters across the cloud.Calico uses a pure IP networking fabric to deliver high performance networking, and its policy engine enforces developer intent for high-level network policy management. Together, Calico and Kubernetes provide a secure, cloud-native platform that can scale your infrastructure to support hundreds of thousands of users.
Read the Blog: http://bit.ly/2qFgDEx
Transcript of Video:
Madhura: [00:13] Hello everyone. My name is Madhura Maskasky and I am here today to talk about Kubernetes Networking and specifically Kubernetes and Calico. What is Calico? Calico is an open source project or framework for simplifying networking. Calico was primarily designed for today's modern cloud native world and in particular in the Kubernetes ecosystem, Calico is starting to emerge to be one of the most popularly used networking frameworks or plugins with a lot of enterprises using it at scale.
Madhura: [00:51] What makes Calico popular, right? I believe there are three important characteristics of Calico that let it stand out. The first one is scalability. Because Calico uses IP networking using BGP, it is fundamentally easy to scale. It's also designed with a distributed scalable architecture or design in mind, that helps as well. The second one, is the debuggability. Again because it uses IP, it's very easy to debug which is a very important aspect. The third one is, support for microsegmentation. Calico makes it possible of where administrators or end users to define networking policies between multiple parts or containers so you can control which part talks with each other part, which is very important in the security world.
Madhura: [01:41] These are the important characteristics of Calico. Calico integrates with Kubernetes through the CNI networking interface and compared to some of the alternatives such Weave or Canal or Flannel, Calico has a number of a salient features that makes it stand out. Now one thing to keep in mind when deploying Calico in hybrid scenarios in particular, is that Calico requires support for encapsulation when deploying in public clouds because it relies on BGP over IP when deployed in private infrastructure and BGP is not supported in public cloud environments.
Madhura: [02:15] As an example, Platform9 Managed Kubernetes for our product we see it deployed in a number of hybrid cloud environment for our customers and what we typically enable out of box for them is we deploy it with IP and IP encapsulation so that it gets deployed seamlessly across private or public could environment. But then we made the option of deploying it using BGP available to private infrastructure environment when customer's networking infrastructure provides support for that.
Madhura: [02:48] These are some of the considerations to keep in mind when deploying Calico and that's it. Thank you for watching.