2

I am trying to evaluate Gravitational Teleport to be for maintaining our own architecture as we will expand soon looking into building clusters. It seems a containerized cluster using Kubernetes is where the bleeding edge is happening and SSH'ing into instances seems more like something you would want to do if you want to manage a lot of VPS yourselves rather than having an immutable infrastructure.

So is Teleport a parallell technology to Container / Kubernetes / Immutable Infrastructure or is it orthogonal, as in, can be used in addition?

Mahoni
  • 7,088
  • 17
  • 58
  • 115
  • maybe useful for direct access and debugging kube nodes. How do teleport nodes discover theirselves? – valichek Mar 25 '17 at 12:03

2 Answers2

2

Teleport can be used to augment a Kubernetes cluster. Kubernetes gives you access into your pods/container, but does not handle the OS level access and control.

Teleport enterprise has extra features for Kubernetes via TeleKube- http://gravitational.com/teleport/docs/2.0/enterprise/

Shane
  • 467
  • 1
  • 4
  • 12
0

Teleport manages to:

  1. Deploys a inside-cluster and namespace scoped service(with its pod).
  2. Creates a secure tunnel between your host and the service deployed.
  3. Configure your localhost networking so it resolves registered services names using K8s DNS through your tunnel.

With all of that done you can send any request as if your host were inside the cluster.

Below is a graph that explain the full picture:

enter image description here

Rafael Aguilar
  • 3,084
  • 1
  • 25
  • 31