While building a DNS round robin ingress design for multiple Traefik instances, I accidentally built an asymmetric packet path that my hypervisor firewall interpreted as “INVALID” and quietly dropped. The cluster looked guilty. The underlay did the crime.
When Microsoft announced Azure CNI powered by Cilium, the community celebrated the arrival of eBPF networking to AKS. However, enterprise security teams are noticing a critical gap: Azure's managed offering lacks the advanced features that make Cilium the choice for zero-trust architectures.
Building a Production-Grade Kubernetes Homelab - Part 6 of 8
Load balancing at scale requires more than engineering intuition. When Google introduced Maglev, they presented an elegant solution to a fundamental distributed systems problem. Today, this algorithm powers critical infrastructure through implementations like Cilium's eBPF-based load balancer.
While migrating from Flannel to Cilium on my Talos cluster, a configuration oversight caused 76 pods to fail during startup. This post documents the root cause and lessons learned about CNI behavior during node upgrades.
Showing 1 - 5 of 5 posts
