Many organizations are discovering the networking complexity involved in running a microservice system. Over the last few years, many influential companies have investigated this problem, the technology that emerged is often referred to as a “service mesh.” A service mesh allows you to replace traditional host-based network security with service-based security to accommodate the highly dynamic nature of modern runtime environments.
In this talk, we will see how the open source Consul Connect and Envoy can be used to solve both network segmentation and seamless transport security with mutual TLS within your Kubernetes cluster. In addition to this, we will see how Connect can provide encrypted and authorized access to legacy applications which are running outside the cluster and potentially in a separate and isolated network.
YOU MAY ALSO LIKE:
- Terraform in production (with Nic Jackson from Hashicorp) (SkillsCast recorded in February 2019)
- CloudNative eXchange 2020 (Online Conference on 17th - 18th November 2020)
- Implementing Microservices: Nobody Told Me About That (SkillsCast recorded in October 2020)
- Debugging Containers on Kubernetes with "kubectl debug" (SkillsCast recorded in July 2020)
Securing and integrating legacy applications with Kubernetes and Consul Connect
Nic Jackson is a developer advocate and polyglot programmer at HashiCorp. He is the author of Building Microservices in Go, which examines the best patterns and practices for building microservices with the Go programming language. In his spare time, Nic coaches and mentors at Coder Dojo, teaches at Women Who Go and GoBridge, and speaks about and evangelizes good coding practice, process, and technique.