• EN

🐝 Cilium 1.14 is now GA 🐝

  • 31 July 2023
  • 1 comment
  • 87 views
saintdle
Userlevel 5
Badge +3

🐝 Cilium 1.14 is here 🐝

You can read the blog post here - which ha

s a lot of videos on these new features and free hands-on-labs as well! Which I think are very damn awesome!

https://isovalent.com/blog/post/cilium-release-114/

Highlights below

🕸 Service Mesh & Mutual Authentication

Mutual Authentication: Roll out mutual authentication effortlessly by adding a few lines in your NetworkPolicies.
SPIFFE & SPIRE: Full SPIFFE/SPIRE stack shipped as part of Cilium to manage certificates for mutual authentication.
Envoy DaemonSet: a new option to deploy Envoy as a DaemonSet instead of embedded inside the Cilium agent
WireGuard Improvements: encryption with Cilium is getting better – you can now encrypt the traffic from node-to-node and also use Layer 7 policies alongside WireGuard
Gateway API Update: our Gateway API implementation is updated with support for the latest GAPI version and additional route type support

🚠  Networking beyond Kubernetes

  L2 Announcement: Cilium can now natively advertise External IPs to local networks over Layer 2, reducing the need to install and manage tools such as MetalLB
  BGP Enhancements: introducing support for better operational tools and faster failover
  Cilium on Nomad: you can now run Cilium on the second most popular container orchestrator

👮‍♂️ CNI Networking and Security

  Multi-Pool IPAM: introducing support to allocate IPs to Pods from multiple IPAM pools. Multi-pool is a step towards Cilium Multi-homing
  BIG TCP for IPv4: after the introduction of BIG TCP support for IPv6 in Cilium 1.13, here comes IPv4 support. Ready for a 50% throughput improvement?
  Deny Policies Graduated to Stable: the Deny Policies have now been promoted to Stable

🌅 Day 2 Operations and Scale

  Cluster Mesh Scale Improvements: for improved stability of large-scale Cluster Mesh deployments with KVstoreMesh
  Cilium CLI Helm Mode: consistent installation and configuration of Cilium with the new Cilium CLI Helm Mode
  Migrating to Cilium: it’s never been easier to migrate to Cilium with the CiliumNodeConfig resource

🔎 Hubble & Observability

  Mutual Authentication Observability: Hubble provides insight on whether the mutual authentication with Cilium is successful or not
  Grafana Network Observability + Hubble UI: Hubble and Grafana together can give you insight into your application performance golden signals

Find me blogging @ vEducate.co.uk | Twitter: @saintdle

1 comment

Chris.Childerhose
Userlevel 7
Badge +20

Interesting software and never really heard of them, so time to check it out and do some reading.  Thanks for sharing this.

Chris Childerhose - VMCA2022 | VMCE2023 | Veeam Vanguard 7* | Veeam Legend 3* | vExpert 5* | VCAP-DCV/VCP-DCV | Object First Ace | Cisco Champion | Twitter: @cchilderhose | Blog Site – https://just-virtualization.tech

Comment


Terms & Conditions