Stack Overflow
Stack Overflow

Questions tagged [cilium]

Cilium is an open source software for transparently securing the network connectivity between application services deployed using Linux container management platforms like Docker and Kubernetes. Community support mostly takes place on the Cilium Slack channel (https://cilium.herokuapp.com), you may want to consider asking there.

Cilium is an open source software for transparently securing the network connectivity between application services deployed using Linux container management platforms like Docker and Kubernetes.

Resources:

53 questions
0
votes
1 answer

Is it not possible to get a char* string content in userspace from eBPF maps?

The idea of my eBPF program is to trace datas on some schedule related tracpoints such as shced_wakeup. For some reasons I need to know when these tracepoints are triggered, in which cgroup it happens. To achieve that, I've found a way to get the…
54vault
  • 39
  • 4
0
votes
0 answers

Cilium limitations switching from AWS VPC CNI?

I want to switch from AWS VPC CNI to Cilium. I already tried to start it up and faced problems with the AWS Load Balancer Controller. Does anyone have experience with the transition? What's the limitations of the “move”? Sadly, I only found…
lony
  • 6,733
  • 11
  • 60
  • 92
0
votes
1 answer

Cilium topologyKey: kubernetes.io/hostname: pending pod, didn't match pod anti-affinity rules

I am trying to install Cilium, but I get error: didn't match pod anti-affinity rules kubectl get pod cilium-operator-69b677f97c-m4rjw -n kube-system -o yaml affinity: podAntiAffinity: requiredDuringSchedulingIgnoredDuringExecution: …
Chris G.
  • 23,930
  • 48
  • 177
  • 302
0
votes
1 answer

Cilium pods stuck in Terminating state when running helm delete

I have cilium installed in my test cluster (AWS, with the AWS CNI deleted because we use the cilium CNI plugin) and whenever I delete the cilium namespace (or run helm delete), the hubble-ui pod gets stuck in terminating state. The pod has a couple…
170730350
  • 590
  • 1
  • 8
  • 22
0
votes
1 answer

Why is cilium-proxy faster than kube-proxy ipvs mode?

I've read the cilium documents and the benchmark shows that cilium-proxy using ebpf is faster than kube-proxy ipvs mode. I'm not an expert on inner workings on ebpf or anything so it would be great if anyone could explain why cilium-proxy is faster…
pandawithcat
  • 571
  • 2
  • 13
0
votes
1 answer

cilium access within GKE autopilot

Bear with me while I try to figure out what is and isn't supported within autopilot... Not sure if this is related to autopilot, but any help is always appreciated. I just spun up a GKE autopilot cluster, and while researching service meshes decided…
Dudo
  • 4,002
  • 8
  • 32
  • 57
0
votes
1 answer

Cilium Cluster Mesh unable to connect Clusters

I have two clusters on GCP as shown below : I followed the tutorial : https://docs.cilium.io/en/v1.12/gettingstarted/clustermesh/clustermesh/ In order to install cilium in each cluster the following commands where used : “cilium install…
plakic
  • 11
  • 3
0
votes
0 answers

bpf_probe_read garbled text. How to get plain text?

I want to get getaddrinfo function entry params(host->PT_REGS_PARM1), attach uretprobe/getaddrinfo, but it return any garbled text, how to get plaintext? using golang cilium/ebpf the uretprobe.c #include "common.h" #include "bpf_helpers.h" #include…
sa Kevin
  • 1
  • 2
0
votes
1 answer

Profiling XDP eBPF packet loss and poor performance

I have created a small project (https://github.com/NHAS/wag) that uses XDP & eBPF to allow connections based on time over a wireguard VPN. I have attached the XDP eBPF program to the wireguard TUN device, and am experiencing poor throughput…
NHAS
  • 1
  • 1
0
votes
0 answers

BPF program auto detaching itself

I am trying to load a simple bpf program. The program gets loaded correctly but after a while (within 4 minutes) it gets automatically detached from the interface. Any idea on how I can debug further? I am using cilium with virtio_net network…
Rishab
  • 73
  • 4
0
votes
2 answers

Cilium installation

I'm trying to install Cilium in Windows 10 with these configuration: minikube version: v1.26.0 Kubectl version: Client Version: version.Info { Major: "1", Minor: "24", GitVersion: "v1.24.1", …
Daniel
  • 49
  • 1
  • 1
  • 10
0
votes
1 answer

Cert-manager ClusterIssuer undefined on EKS cluster with Cilium installed as CNI. Error: Post \"": Address is not allowed" "key"="clusterissuername"

I installed cert manager with helm and kustomize but once it's deployed there's an error from the ClusterIssuer that use ACME as you can see in the image below: And when I do kubectl get clusterissuer I can see there is absolutely no state defined…
Alioune Badara Diakhaté
  • 1
  • 1
0
votes
2 answers

Cilium installation on rancher-desktop

I am not really sure how to formulate properly this question, really beginner with k8s. I am creating a playground for k3s on a laptop, wanting to install cilium and prometheus/grafana monitoring. For that purpose i installed rancher-desktop which…
dotokija
  • 1,002
  • 7
  • 10
0
votes
1 answer

Can Cilium-Istio be deployed using the Istio operator?

We are moving to Cilium as our Kubernetes CNI plugin. We also use the Istio service mesh, and would like to bring Cilium's benefits to our Istio deployment. I understand that in order to do so, we would need to deploy Cilium's "instrumented" version…
Pranay S
  • 1
0
votes
0 answers

AKS cilium single node cluster not accepting connections

I was following https://docs.cilium.io/en/v1.9/gettingstarted/k8s-install-aks/ and installed cilium on single node AKS cluster. The problem is that when i create Load balancer service with external ip it is not possible to connect to it - all…
Adam Skibicki
  • 51
  • 4
1 2
3
4