Advanced Kubernetes/AKS Network & Infrastructure | Udemy


Advanced Kubernetes/AKS Network & Infrastructure | Udemy
English | Size: 5.91 GB
Genre: eLearning

Learn how to secure network communication in AKS/Kubernetes cluster

What you’ll learn
Learn AKS and Kubernetes network best practices
Learn how to securely expose services in Kubernetes
Learn how to secure pod to pod communication
Learn to setup TLS certificates for pods and ingress

You started your journey learning Kubernetes ?

You have been learning the fundamentals of a Kubernetes cluster ?

And now you want to make sure your cluster is production ready in terms of security ?

If you are looking for how to secure your Kubernetes cluster then this course is for you.

Let us face it, security is not an easy task. And Kubernetes is not an exception.

Securing a Kubernetes cluster requires thinking about all these aspects:

Network security: through private cluster access to API Server with Private Endpoint.

Secure egress traffic: all egress traffic should be filtered using Firewall.

Secure ingress traffic: using TLS and HTTPS on the ingress controller.

Secure inter-pod communication: secure traffic between pods using TLS or mTLS.

Controlling traffic between pods: using Network Policy tools like Calico.

Securing access to Managed Identities: by restricting access to IMDS endpoint (169.254.169.254).

Microsoft provides the following recommendations to secure an AKS cluster and this course will try to go deeper with demonstration.

Recommendation 1: To distribute HTTP or HTTPS traffic to your applications, use ingress resources and controllers. Compared to an Azure load balancer, ingress controllers provide extra features and can be managed as native Kubernetes resources.

Recommendation 2: To scan incoming traffic for potential attacks, use a web application firewall (WAF) such as Barracuda WAF for Azure or Azure Application Gateway. These more advanced network resources can also route traffic beyond just HTTP and HTTPS connections or basic TLS termination.

Recommendation 3: Use network policies to allow or deny traffic to pods. By default, all traffic is allowed between pods within a cluster. For improved security, define rules that limit pod communication.

Recommendation 4: Don’t expose remote connectivity to your AKS nodes. Create a bastion host, or jump box, in a management virtual network. Use the bastion host to securely route traffic into your AKS cluster to remote management tasks.

Disclaimer: This course uses Azure Kubernetes Service (AKS) for demonstrations. But most of the content is applicable to any Kubernetes cluster on any environment.

Who this course is for:
This course is for platform teams that needs to manage Kubernetes cluster and securely deploy apps.

DOWNLOAD FROM RAPIDGATOR

rapidgator.net/file/3fe5d91039ec68655d8e09307eee3f01/UD.Advanced.KubernetesAKS.Network.and.Infrastructure.part1.rar.html
rapidgator.net/file/e9d7385b8f8700adc7eb0cb490407988/UD.Advanced.KubernetesAKS.Network.and.Infrastructure.part2.rar.html
rapidgator.net/file/13541a9c96ca358e02d41d8019c14403/UD.Advanced.KubernetesAKS.Network.and.Infrastructure.part3.rar.html
rapidgator.net/file/bc0abebf784965b66dd7fae3e551bada/UD.Advanced.KubernetesAKS.Network.and.Infrastructure.part4.rar.html
rapidgator.net/file/05198591f8d0913fc3468a0f2e1c3e1f/UD.Advanced.KubernetesAKS.Network.and.Infrastructure.part5.rar.html
rapidgator.net/file/86253833f78e5530abd9d1296986892d/UD.Advanced.KubernetesAKS.Network.and.Infrastructure.part6.rar.html

DOWNLOAD FROM TURBOBIT

trbbt.net/jfsuhlylr4i5/UD.Advanced.KubernetesAKS.Network.and.Infrastructure.part1.rar.html
trbbt.net/8n2nyfkop1uu/UD.Advanced.KubernetesAKS.Network.and.Infrastructure.part2.rar.html
trbbt.net/3ivv2680pcev/UD.Advanced.KubernetesAKS.Network.and.Infrastructure.part3.rar.html
trbbt.net/crr7btn4ab1g/UD.Advanced.KubernetesAKS.Network.and.Infrastructure.part4.rar.html
trbbt.net/mcuqlre9mylv/UD.Advanced.KubernetesAKS.Network.and.Infrastructure.part5.rar.html
trbbt.net/f999xe8pqbvx/UD.Advanced.KubernetesAKS.Network.and.Infrastructure.part6.rar.html

If any links die or problem unrar, send request to
forms.gle/e557HbjJ5vatekDV9

Leave a Comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.