Amazon EKS - Deploy Cilium CNI and Secure Pod Communications using Network Policies

Lab Steps

lock
Logging in to the Amazon Web Services Console
lock
Connecting to the Virtual Machine using EC2 Instance Connect
lock
Reviewing Amazon EKS Resources Automatically Created
lock
Installing Kubernetes Management Tools and Utilities
lock
Install Cilium CNI
lock
Deploy Star Wars Cluster Resources
lock
Secure Pod Communications

The hands-on lab is part of this learning path

Ready for the real environment experience?

DifficultyIntermediate
Time Limit1h 30m
Students25
Ratings
5/5
starstarstarstarstar

Description

Cilium is an open source software for providing, securing and observing network connectivity between container workloads - cloud native, and fueled by the revolutionary Kernel technology eBPF.

In this Lab scenario, you'll learn how to reconfigure an EKS cluster to utilize Cilium as it's CNI provider. 

You'll also learn how to deploy a sample Star Wars themed application into the cluster, and then secure it using Cilium based Network Policies.

May the force be with you!

Learning Objectives

Upon completion of this Lab, you will be able to:

  • Reconfigure EKS to utilize Cilium as it's CNI provider
  • Deploy a sample Star Wars themed application
  • Secure Pod inter-communication using Cilium based Network Policies

Intended Audience

This lab is intended for:

  • Kubernetes practitioners
  • DevOps Engineers

Lab Prerequisites

You should be familiar with:

  • Basic Linux command line administration
  • Basic Kubernetes and Container-based concepts

Consider taking the following courseware in preparation for this lab:

Lab Environment

This Lab will start with the following AWS resources provisioned automatically for you:

  • 1 x EKS cluster - Cluster-1 - provides a fully functional Kubernetes cluster 
    • 1 x NodeGroup
      • 1 x EC2 Worker Nodes
  • 2 x EC2 instances
    • eks.launch.instance - used to launch the EKS cluster (not accessible)
    • cloudacademylabs - used to provide SSH access to administer the EKS cluster
Environment before
PREVIEW
arrow_forward
Environment after
PREVIEW
About the Author
Students106681
Labs59
Courses113
Learning paths91

Jeremy is a Content Lead Architect and DevOps SME here at Cloud Academy where he specializes in developing DevOps technical training documentation.

He has a strong background in software engineering, and has been coding with various languages, frameworks, and systems for the past 25+ years. In recent times, Jeremy has been focused on DevOps, Cloud (AWS, GCP, Azure), Security, Kubernetes, and Machine Learning.

Jeremy holds professional certifications for AWS, GCP, Terraform, Kubernetes (CKA, CKAD, CKS).