Kubernetes networking is often considered the hardest part of the ecosystem. In this module, we demystify how packets flow between Pods, how Services provide stable IPs, and how to secure your cluster with Zero Trust principles.
Module Contents
The foundation of internal service discovery. Understand kube-proxy, iptables, and CoreDNS.
Exposing applications to the outside world. From quick NodePort hacks to production-grade Cloud LoadBalancers.
Layer 7 traffic management. Host-based routing, path rewriting, and TLS termination with Nginx.
How Pods actually get IPs. A look at the CNI specification, overlay networks (Flannel), and BGP (Calico).
Implementing a Zero Trust network firewall inside your cluster. Default deny, ingress, and egress rules.
Flashcards, cheat sheets, and a final summary of key concepts.
Module Chapters
ClusterIP Services
1. The Problem: Ephemeral IPs
Start LearningNodePort & LoadBalancer
1. NodePort: The Quick & Dirty Way
Start LearningIngress Controllers
1. The Problem: Cost & Complexity
Start LearningCNI Plugins
1. The Problem: Connecting Containers
Start LearningNetwork Policies
1. The Problem: Default Allow
Start LearningModule Review: Networking
Key Takeaways
Start Learning