Understanding Kubernetes Visibility

Kubernetes is an open-source system for automating the deployment, scaling, and management of containerized applications. A Kubernetes deployment creates a Kubernetes cluster which consists of at least one control plane node and a set of worker nodes that run containers. The worker nodes host the Pods that handle application workloads. The Kubernetes control plane administers the worker nodes and the Pods in a cluster. The core of Kubernetes' control plane is the API server through which users, different parts of the Kubernetes cluster, and external components interact. The Kubernetes API lets you query the state of objects in Kubernetes.

An increasing number of applications today use Kubernetes for container orchestration. The cloud-native application environments built using Kubernetes are highly distributed, and the majority of traffic consists of East-West flows between containers or pods. From a network perspective, there is significantly less visibility into these flows, making troubleshooting application performance issues difficult.

Netvisor ONE version 7.0.0 introduces the Kubernetes visibility feature, which gives you full visibility into East-West traffic flows between containers inside a Kubernetes cluster without external network TAP infrastructure. This feature allows you to correlate containers with applications and know which hosts they reside and how they connect to the fabric.

You can track and monitor containers (for information including IP, name, image, and location in the fabric) and Kubernetes cluster components (kube-controller and kube-scheduler). This granular information helps perform root cause analysis of application availability and performance issues in a container environment. Netvisor ONE implements a Kubernetes client that subscribes to the Kubernetes API server for real-time notifications of events and changes.

By configuring the Kubernetes visibility feature, you can track historical data regarding a Kubernetes cluster which helps you identify and fix availability issues even for containers that existed in the past. The feature lets you trace all available shortest paths between two Pods or nodes. You can also enable vPort table creation and connection statistics for fine-grained Pod to Pod traffic analytics.