Cilium
@ciliumproject
Followers
13,627
Following
633
Media
600
Statuses
3,436
eBPF-based Networking, Security, and Observability Open Source | | | Newsletter
Joined March 2017
Don't wanna be here?
Send us removal request.
Explore trending content on Musk Viewer
Bolivia
• 1211744 Tweets
Venezuela
• 468262 Tweets
México
• 444286 Tweets
Ecuador
• 118470 Tweets
Lakers
• 95491 Tweets
The Bear
• 89987 Tweets
Mexicanos
• 75970 Tweets
Corinthians
• 69831 Tweets
Romo
• 66664 Tweets
Jamaica
• 62757 Tweets
DARIO
• 62068 Tweets
Baco
• 58939 Tweets
Bautista
• 57493 Tweets
Conmebol
• 56759 Tweets
Spurs
• 51727 Tweets
#NBADraft
• 51405 Tweets
#CopaAmerica2024
• 45929 Tweets
Santi
• 42838 Tweets
Dalton Knecht
• 42442 Tweets
Edey
• 40727 Tweets
Bahia
• 39564 Tweets
Abel
• 38826 Tweets
Rondón
• 37515 Tweets
Juventude
• 32328 Tweets
Bronny
• 31657 Tweets
Rob Dillingham
• 29159 Tweets
Food Bank
• 24686 Tweets
Fortaleza
• 24544 Tweets
McCain
• 24195 Tweets
Rossi
• 22865 Tweets
梅子さん
• 21486 Tweets
Quiñones
• 20533 Tweets
Orbelin
• 18605 Tweets
#SAvAFG
• 17390 Tweets
Mechico
• 16099 Tweets
Timberwolves
• 15758 Tweets
Concacaf
• 15069 Tweets
#ManoTengoFe
• 14256 Tweets
Hulk
• 13141 Tweets
Antuna
• 12188 Tweets
Collier
• 11868 Tweets
Aramburu
• 11347 Tweets
Maicon
• 10734 Tweets
Pinned Tweet
📢 Cilium 1.15 is released! 2705 commits from 690 developers made this happen 🤩
➡️ Gateway API 1.0 support
🔐 BGP session authentication
👁️ tons of improvements to Hubble observability
🌍 scalability and security enhancements
and lots more! Docs here:
2
30
60
Introducing - Learn everything about eBPF
- Docs, Tutorials, Reference guides
- eBPF projects directory
- An aggregated blog
- Help in getting started with contributions
- Slack channel
- Open repository & CC BY 4.0
8
248
519
kind: Opportunity
apiVersion: v1
spec:
offices: [ Sunnyvale , Zurich ]
remotePossible: true
comm: slack
requirements:
ciliumExcitement: 100%
kubernetesLevel: native
karma: positive
languages:
- go
- shell
- humor
contactMethod: DM
8
71
422
Cilium 1.6 has been released:
* KVStore free operation
* 100% Kube-proxy replacement
* Socket-based load-balancing
* Policy scalability improvements
* Generic CNI chaining
* Native AWS ENI mode
3
153
351
Cilium is now officially a
@CloudNativeFdn
Graduated Project 🐝
Thank you to all of the contributors, community members, adopters, and supporters that have helped make this milestone possible!
15
102
317
Dropbox has open sourced a Go library to work with XDP and socket-level eBPF programs:
It includes some nice examples as well.
2
106
315
Announcing Cilium 1.0:
Bringing the BPF Revolution to Kubernetes Networking and Security
- BPF-based networking, security & load balancing
- Identity based security at packet & API call level
- Service mesh datapath
- CNI/CMM plugin
7
187
308
The eBPF Go library powering Cilium 1.7 is now available for everyone. It is jointly maintained by
@Cloudflare
and the Cilium Team.
- Pure GO, no CGO
- Minimal external dependencies
- Loading, compling and troubleshooting eBPF progs
- eBPF maps
3
94
308
Today we are announcing Hubble
eBPF-based Network, Service, and Security Observability for Kubernetes
Code:
Blog:
Service dependency map, operational monitoring & alerting, flow logs, application & security visibility
2
114
276
Understanding Cilium Network Performance
- eBPF vs iptables
- Cilium vs Calico
- Throughput, Req/s, Connection/s, Latency, & CPU
- Wireguard vs IPsec
4
98
272
We have officially applied for Cilium to become a CNCF project 🎉
Feel free to leave a 👍 in the PR to show your support.
4
70
259
Cilium 1.2 announcement:
o DNS/FQDN based security policies
o AWS EKS support
o Integrated etcd operator
o BGP support via kube-router integration
o Pod networking & security across Kubernetes clusters (ClusterMesh)
0
112
246
Announcing the Kubernetes Network Policy Editor
🧙♀️Interactive & tutorial-based policy creation
✨Amazing visualizations
🔒Security score
🧑🤝🧑Easy sharing with others via GitHub
🪄Auto-generate from network flow logs
ℹ️NetworkPolicy & CiliumNetworkPolicy
6
85
242
Facebook engineers have published lots of new details on their use of BPF to build fast and scalable infrastructure.
BPF reference guide:
0
111
229
2
40
208
Cilium 1.4.0 is out!
* Multi-Cluster service routing
* IPVLAN support
* DNS request authorization
* Transparent Encryption
* Sockmap/BPF based sidecar acceleration
* Flannel Integration
* [...]
* Bonus: Benchmark against other CNIs
3
84
203
Cilium 1.10 has been released! 🎉🎉🎉
Wireguard Support, ServiceIP BGP Announcements, Static Egress IP Gateway, New Cilium CLI, XDP Load Balancer with PCAP recorder, Alibaba Cloud Integration, Performance improvements, and much more...
3
74
184
Cilium 1.5 is available:
* Scalability to 5k nodes, 100k pods, 20k services
* BPF templating
* Rolling key updates and direct-routing support for transparent encryption
* BPF-based masquerading for IPVLAN
* Istio 1.1.3 support
0
67
181
Cilium 1.8 has been released! 🎉🎉🎉
* XDP Load Balancing Support
* Cluster-wide flow visibility
* Better policy visibility and control
* Performance optimizations
* Making more functionality iptables-free
* Native Azure IPAM
* Initial ARM64 Support
* ...
4
51
166
Cilium 1.3 (LTS) announcement:
o
@EnvoyProxy
Go Extensions
o Cassandra & Memcached support
o TTL support for DNS policies
o GKE COS enablement
o Fully resilient key-value store
2
58
157
Today, Google announced the availability of Cilium as the new GKE networking dataplane.
What a great honor for everyone who has contributed to the Cilium project and to eBPF overall. Thank you to everyone!
Background story:
5
45
155
🎉 Cilium 1.11 has been released!
- OpenTelemetry
- Service Mesh beta
- Topology Aware Routing
- Many on-premises Features
- BGP Pod CIDR Announcement
- Graceful Service Backend Termination
...
1
53
148
We are getting ready for
@KubeCon_
. Design inspired by
@jessfraz
, artwork by
@vadim_legend
.
Stop by to say hi, grab a sticker, and don't miss our talk on zero cost service mesh injection with
@EnvoyProxy
and BPF.
9
25
144
🎉 We’re excited that Cilium is now part of the
@CloudNativeFdn
family!
#KubeCon
1
28
120
🐝Cilium 1.14 is here 🐝
🕸️Service Mesh & Mutual Authentication
🚡 Networking beyond Kubernetes
🌅 Day 2 Operations and Scale
🔎 Hubble and Observability
👮 CNI Networking and Security
See the 🧵 for details
1
44
116
🐝Cilium 1.12 - Release Announcement 🐝
Yet another massive release! 🚀
Integrated Ingress Controller, Cilium Service Mesh, Multi-Cluster Service Affinity, Stable Egress Gateway, NAT46 for Services, IPv6 for BGP, AKS BYOCNI, BBR, and more...
3
35
114
Cilium 1.7 is available! 🎉🎉🎉
o Hubble UI Open Sourced
o Cluster-wide Network Policies
o New eBPF Go Library
o eBPF-based DSR, ExternalIP, and EndpointSlices
o TLS visibility for HTTP
o ...
3
38
108
Cilium 1.9 has been released! 🎉🎉🎉
Maglev, Deny Policies, VM/Metal Support, OpenShift, Hubble mTLS, Bandwidth Manager, eBPF Node-Local Redirect, Datapath Optimizations, ...
FYI: Release blog has an animated GIF with 🔥. Can it get any better?
0
30
107
🐝 Cilium 1.13 Release Announcement 🐝
Cilium 1.13 features Gateway API, mTLS datapath, Service Mesh, BIG TCP, SBOM, SNI NetworkPolicy, SCTP, load balancer IPAM, and more
Thank you to the 530 developers who added 2101 new commits
3
39
105
Exciting news in the Cilium ecosystem! Cisco has announced it’s planning to acquire
@Isovalent
, backing
#eBPF
, Cilium and Tetragon as the leading technologies in the cloud native networking and security space
🎉 We’re excited to share some wonderful news: Cisco is acquiring Isovalent! 🎉
26
143
531
4
27
105
Celebrating
@IstioMesh
1.0: How Cilium enhances Istio with socket-aware BPF programs
- Using BPF/kTLS to enable Istio if app uses TLS
- Enhance Istio security with intra pod container segmentation using socket-aware BPF programs
0
42
103
Great photo from
@brendangregg
during the eBPF conference
Engineers from Cilium, Cloudflare, Google (Project Zero), Facebook, Netflix, Netronome and Redhat are discussing the future of eBPF.
0
22
102
Exciting days: BPF is replacing iptables in the kernel.
The kernel community is about to replace iptables with BPF. I've captured my thoughts in a blog post. The performance gains speak for themselves.
23
720
1K
0
46
97
Cilium 1.1 has been released 🎉
33 contributors have contributed 964 commits to this release. A big shout out to the entire community for all the contributions, testing, and feedback. 👏
2
32
92
1.0.0-rc4 is out. What's new?
-
@EnvoyProxy
new default HTTP proxy
- Simple health and connectivity monitoring
- Enhanced kvstore layer
- ...
0
37
89
🐝 eBPF & Cilium talk at FOSDEM 2021
- Advanced eBPF features for containers
- XDP N-S LB with Maglev
- Recent eBPF performance optimizations (bypass iptables)
- EDT bandwidth management
Recording:
Slides:
0
37
87
Deep dive into Cilium multi-cluster:
- Service discovery with standard Kubernetes services
- Native performance, no proxies, no gateways
- NetworkPolicy or CiliumNetworkPolicy
- Transparent encryption
- Scalable control plane with etcd proxies
1
27
86
BPF as a revolutionary technology for the container landscape
FOSDEM 2020, Daniel Borkmann
Recording:
Slides:
2
37
83
Very exciting to see that Alibaba picked Cilium to build out a new eBPF-based high-performance dataplane.
1
26
83
🎉 Excited to announce the dates for eBPF Summit 2021 will be August 18-19!
Pre-register now and we'll keep you in the loop with updates:
1
32
81
Wondering how to manage
@kubernetesio
cluster networking at scale like
@IKEA
?
Learn how
@Nielsen77K
from IKEA IT AB is doing it at Cloud Native eBPF Day
1
15
80
Using kubectl to introspect Kubernetes nodes with BPF. Allows to use all of the bpftrace templates. Awesome project by
@fntlnz
kubectl-trace:
bpftrace:
0
33
76
Hard at work testing eBPF NodePort by running
@ioquake3
server behind Cilium eBPF NodePort.
#WFHHappyHour
2
9
74
Announcing the release of Tetragon 1.0🎉 🎉
A huge shoutout to everyone who's chipped in, tested, shared feedback, and used Tetragon. This is a milestone, and it's all thanks to you!
See the release notes for changes and bugfixes 👇
1
14
69
Cluster-wide network policies have been merged today. Huge contribution by Deepesh Pathak (
@fristonio
). Awesome work Deepesh 👏 and welcome to the Cilium core team.
1
16
70
Cilium 1.4 Preview: Multi-Cluster Service Routing, DNS Authorization, and Transparent Encryption
0
22
67
The eBPF documentary debuted yesterday at
#KubeConNA
2023!
Join us in exploring the untold story of eBPF from its inception to its adoption in the cloud native ecosystem and how it is driving the ecosystem forward through projects like Cilium 👇
0
26
63
"The Cilium project has an exceptional cilium/ebpf Golang library that compiles and interacts with eBPF probes within Golang code."
Leading to:
-40% memory usage
-98% container restarts from OOMKilled
-80% in deployment time per Kubernetes cluster
0
19
66
We are super excited to announce Cilium Enterprise Edition 4.0!
- Repelling Attacks with Emojis
- Rickrolling
- Localized 403 Error Messages
0
17
66
We are pleased to introduce the availability of Cilium in the Red Hat Ecosystem Catalog as well as the certification of Cilium as a Certified OpenShift CNI plugin.
0
23
66
PSA: Cilium's eBPF-based k8s services implementation is NOT vulnerable to CVE-2020-8558 (kube-proxy: Node setting allows for neighboring hosts to bypass localhost boundary).
Enjoy your iptables-free NodePort and go have brunch.
[0]
0
20
63
Live on stage
@KubeCon_
💯🚀🎊
Cilium has applied to graduate from
@CloudNativeFdn
Show your support on Github
#KubeCon
0
13
64
Deep dive into Kubernetes CVE-2020-8554 MITM ExternalIP attack and how to mitigate it by replacing kube-proxy.
1
23
64
Analysis of the reported HTTP/FTP performance problem.
TL;DR: Caused by how curl reports the transfer rate when a TCP connection is delayed due to optimistic async network setup to optimize pod/s scheduling. Kudos to
@alexisducastel
for reporting!
1
20
63
Out statement regarding:
License change and lack of attribution of Cilium eBPF code in Calico project
2
27
62
The vote for Cilium's graduation is officially open 🗳️
You can add your 👍 on the vote to show support or track the progress of it there
Once 2/3 of the TOC vote yes, Cilium will become a graduated project with CNCF 🚀 🐝
2
27
62
Cilium eBPF-based load balancer enabled
@seznam_cz
to switch from IPVS, reducing CPU consumption by 72x while still seamlessly handling their production traffic.
Want to learn more?
Here you go👇
1
23
62
The Future of eBPF-based Networking and Security,
Thomas Graf, eBPF Summit 2020
0
18
61
Initial release of the "BPF & XDP Reference Guide" written by Daniel Borkmann. Open for learning and collaboration.
2
43
59
The list of cloud providers adopting Cilium is growing 🚀 We are now a CNI option for users of
@CivoCloud
0
13
57
We learned that the Norwegian Police ICT is using Cilium.
We apologize to all Norwegians for routing all those parking violation tickets.
1
6
57
Learn about Cilium & BPF at
#KubeCon
next week:
Extending Envoy with Go & Cilium
Connecting Kubernetes Clusters Across Cloud Providers
Implementing Least Privilege Security and Networking with BPF
0
18
56
The Call For Papers for eBPF Summit 2021 is now open!
If you're using eBPF-based open source projects to solve real world problems, we'd love to hear your story
0
23
54
Cilium User Survey March 2019 - The Results
- 39.3% want to see kube-proxy disappear 👻
- 37% love YAML
- 33.9% want to see
@SPIFFEio
integration
- 86.9% are using self-managed k8s
1
21
53
cilium/ebpf (ebpf-go) v0.10.0 has been released! 🎊🚀
This is a huge release with BTF marshaling support, a multi-year effort. It makes BTF and all its current use cases fully programmable from Go. Thank you to every contributor who made it possible!
0
15
53
🗞️ eBPF Updates
#5
has been released:
Highlights:
- Cilium applies for CNCF
- Working on eBPF via Google Summer of Code
- New weekly eBPF & Cilium Office Hours (eCHO)
- eBPF in systems, static linking & eBPF
- eBPF @ LPC CFP
- New eBPF kernel features
0
21
53
🐝 New pwru release 🐝
Version: 1.0 🎉 🤯
Major Changes:
- Added support for libpcap-based filtering
- Fixed pwru slow loading on Ubuntu
- Fixed trace losses due to the perf ring buffer being full
Full release notes 👇
Update and provide us feedback!
0
11
53
Troubleshooting Series Part 1:
cilium-health - simple cluster connectivity health
* Latency for ICMP and HTTP between all cluster nodes
* Who to blame when the network is unhealthy? user? iptables? fabric?
0
18
53
"Cilium has become the gold standard for Kubernetes networking. Cilium’s adoption of eBPF and XDP provides a future-facing solution, enriched with the best debugging tool available (Hubble) and the best developer experience with the Cilium Editor"
0
14
51
BPF as a Fundamentally Better Dataplane - Daniel Borkmann
0
11
52
🐝 Graduation Public Comment Open 🐝
🧑💻 613 contributors
🏷️242 releases
📑 24,853 commits
💼 63 public case studies
Please add your ➕1⃣ for Cilium Graduation on the mailing list to show your support for everything the community has built so far 🚀
1
22
48
eBPF Go library 0.4 has been released
- Unpin support for maps & programs
- BTF-style declaration for nested maps
- Global runtime stats for programs
- Batch* methods for some map type
- Tag support
- A lot more examples
1
17
52
Performance Wins with BPF: Getting Started, Brendan Gregg, eBPF Summit 2020
0
12
50
CFP for Networking & BPF Track for LPC 2021 is open!
0
17
50
The beta for the Cilium Certified Associate exam is starting this week!
You can still sign up here if you're interested in trying it out 👇
4
16
49
Interested in how Datadog uses Cilium?
As part of the Datadog on Kubernetes series,
@arapulido
and
@lbernail
discuss why and how Datadog migrated to Cilium.
0
17
50
So much iptables, so much sadness.
New Kubernetes cluster (1.15 w/ kubeadm, Cilium). I expected to find very few iptables rules finally (no kube-proxy etc), but, uh...
I guess it _really_ makes to make sure it DROPs that pattern. Repeating the same iptables rule 6,979 times oughta do it.
9
18
119
0
14
48
Solve the networking mystery 🔍
"That’s the beautiful thing about pwru. Network flow debugging historically required you to know what you don't know. pwru provides end-to-end knowledge and lets you find the culprit even without this foresight"
0
14
46
Safe Programs, The foundation of BPF - Alexei Starovoitov
0
12
46
🗞️ eBPF Updates
#4
:
- In-memory Loads Detection
- Debugging QUIC
- Local CI Runs
- MTU Checks
- but No Pancakes
Yours Truly,
🐝
0
15
46
How Wildlife Studios built a Global Multi-Cluster Gaming Infrastructure with Cilium
Awesome guest post by
@wildlifestudios
SRE Luan Guimarães.
0
16
46
Rethinking Linux Networking and Security for the Age of
@kubernetesio
Pre
@KubeCon_
preview of our new service mesh datapath performance for
@EnvoyProxy
and
@IstioMesh
.
Blog:
KubeCon talk:
1
16
43
Join
@RandyAbernethy
from
@rxmllc
as he breaks down how Kubernetes networking actually works using Cilium as the CNI
0
17
44
Interested in eBPF & Hubble? Learn more at the following KubeCon EU talks:
eBPF and Kubernetes: Little Helper Minions for Scaling Microservices - Daniel Borkmann
Hubble - eBPF Based Observability for Kubernetes - Sebastian Wicki
0
13
42
No eCHO this week because our hosts are too busy enjoying 🇨🇭
See y'all next Friday for more Cilium and eBPF fun 🐝
1
1
42
Awesome guest post by
@howardhh5
of ect888. How to set up Cilium + F5 + BIRD to load-balance directly into a bare-metal Kubernetes cluster to avoid NodePort and thus avoid SNAT and extra hops.
0
15
42