Why consider a service mesh? I’ve always been very intrigued by the service mesh concept. It can offer quite some intriguing features, but often they are perceived as a nice to have, rather then a must have if you’re just experimenting with kubernetes. …

1. Lets create a TOR socks proxy image This should be easy via this Dockerfile FROM ubuntu ENV DEBIAN_FRONTEND=noninteractive RUN apt-get update RUN apt-get install -y bash curl privoxy tor tzdata vim net-tools COPY config /etc/privoxy/config COPY start.sh . CMD [ "/start.sh"] and some (probably to enhance) script to run the proxies in the container/pod. See https://github.com/xxradar/torproxy …

I stumbled on pixielabs while investigating #eBPF. It is extremely powerful tool showing a lot of eBPF capabilities in a nice UI on a kubernetes cluster. 1. Setting up a k8s cluster For the sake of this demo I will be using a managed kubernetes cluster on the DigitalOcean platform…

In order to use ephemeral containers, the K8S cluster needs to be created using the EphemeralContainers feature gate. This technique makes using tcpdump inside a pod quite easy without the need to restart or patch a pod or deployment. Create a cluster enabling EphemeralContainers The following configuration cluster.yaml helps installing a K8S cluster using kubeadm. …