veda/platform/components/01-cilium/readme.md

Cilium Component

Overview

Cilium is our CNI (Container Network Interface) solution that provides networking, security, and observability for Kubernetes using eBPF.

Configuration

The following configurations are available:

• Version: 1.18.3
• IPAM Mode: kubernetes
• Hubble UI: Enabled
• L2 Announcements: Enabled
• kube-proxy Replacement: Enabled

Features

• Hubble UI: Web interface for network observability
• L2 Announcements: For LoadBalancer service type support
• Enhanced Security: Using eBPF for network policy enforcement
• Kube-proxy Replacement: Native handling of service load-balancing

Post-Install

After installation:

1. Cilium core components will be installed

2. Hubble UI and Relay will be deployed

3. LoadBalancer IP pools will be configured

4. Initial access to Hubble UI is available through port-forward:

   kubectl port-forward -n kube-system svc/hubble-ui 12000:80
   

   Then visit: http://localhost:12000

Dependencies

• Kubernetes cluster
• Helm v3+
• Linux kernel >= 4.9.17

Troubleshooting

1. Check if Cilium pods are running:

   kubectl get pods -n kube-system -l k8s-app=cilium
   

2. Check Cilium status (requires Cilium CLI):

   cilium status
   

3. Check Hubble UI deployment:

   kubectl get deployment -n kube-system hubble-ui
   

4. View Cilium logs:

   kubectl logs -n kube-system -l k8s-app=cilium
   

To install Cilium CLI:

brew install cilium-cli