Key Points:
• Microsoft has announced the general availability of Advanced Container Networking Services for Azure Kubernetes Services (AKS).
• The service provides granular security controls and deep observability for Kubernetes and containerized environments.
• It includes features such as node-level metrics, pod-level metrics, and Hubble flow logs to improve network visibility and troubleshooting.
Microsoft has announced the general availability of Advanced Container Networking Services for Azure Kubernetes Services (AKS), a cloud-native purpose-built solution to enhance security and observability for Kubernetes and containerized environments. The service provides a seamless and integrated experience that allows users to maintain robust security postures and gain deep insights into their network traffic and application performance.
One of the key challenges with container security is the ephemeral nature of containers, which makes it difficult to maintain a robust security posture. Advanced Container Networking Services addresses this challenge by providing advanced fine-grained network policies using Kubernetes identities to only allow permitted traffic and secure endpoints.
The service also provides real-time and detailed insights across node-level, pod-level, and DNS-level metrics, ensuring that no aspect of the network goes unnoticed. These metrics are crucial in identifying performance bottlenecks and resolving network issues before they impact workloads.
Advanced Container Networking Services includes features such as node-level metrics, pod-level metrics, and Hubble flow logs to improve network visibility and troubleshooting. Node-level metrics provide insights into traffic volume, dropped packets, and number of connections by node, while pod-level metrics provide insights into traffic volume, dropped packets, and TCP resets by pod. Hubble flow logs provide visibility into workload communication, aiding in understanding how microservices communicate with each other.
The service also includes FQDN filtering and security agent DNS proxy, which enable advanced fine-grained network policies using Kubernetes identities and secure endpoints. FQDN filtering allows for more efficient and manageable control over external communications, while security agent DNS proxy ensures that pods continue to have DNS resolution even if the Cilium Agent is down or undergoing an upgrade.
Many customers have already deployed Advanced Container Networking Services to troubleshoot application degradation, DNS resolution timeouts, and network connectivity issues. H&M Group, Japan Tobacco International, and Ferrovial are among the companies that have used the service to improve their network visibility and security.
As customers continue their journey in the cloud-native space, the importance of integrating security and observability into every layer of their infrastructure cannot be overstated. With Advanced Container Networking Services, users can move faster, innovate more, and do so with confidence that their workloads are both visible and protected.
Read the rest: Source Link
You might also like: Why Choose Azure Managed Applications for Your Business & How to download Azure Data Studio.
Remember to like our facebook and our twitter @WindowsMode for a chance to win a free Surface every month.