Technology · Ebook

Antrea: Kubernetes Networking and Security

by Shriira Press

Antrea is the CNCF Kubernetes-native networking and security solution — a CNI built on Open vSwitch that provides pod networking plus rich network policies, deep observability (Traceflow), and advanced features (encryption, egress, load balancing, multi-cluster), all performant and cross-platform. This free book teaches it from the ground up: the Kubernetes networking problem and what Antrea is, Kubernetes networking and CNI concepts, Antrea's architecture (Controller, Agents, Open vSwitch), pod networking (connecting pods, the OVS bridge, traffic modes), network policies (Kubernetes and Antrea-native), observability (Traceflow, flow visibility), services and load balancing (AntreaProxy), advanced features (encryption, egress, FQDN policies, Windows), multi-cluster networking, and using Antrea in practice. Ten focused chapters with clear diagrams that make Kubernetes networking concrete — connect pods on a flat network, secure them with least-privilege policies, trace packets to debug connectivity, and span clusters — a complete, secure, observable, performant network built on the proven foundation of Open vSwitch.

Contents

1. 1Preface
2. 2Chapter 1 — What Antrea Is
3. 3Chapter 2 — Kubernetes Networking and CNI
4. 4Chapter 3 — Antrea Architecture
5. 5Chapter 4 — Pod Networking
6. 6Chapter 5 — Network Policies
7. 7Chapter 6 — Observability
8. 8Chapter 7 — Services and Load Balancing
9. 9Chapter 8 — Advanced Features
10. 10Chapter 9 — Multi-Cluster Networking
11. 11Chapter 10 — Antrea in Practice