Container Services for Kubernetes

Modern application architectures based on microservices have made appliance-based load balancing solutions obsolete. Containerized applications deployed in Kubernetes clusters need a scalable and enterprise-class solution for load balancing, global and local traffic management, service discovery, monitoring/analytics and security. Multi-cloud application services that offer enterprise-grade features, high levels of automation based on machine learning, and observability are needed to help bring container-based applications into enterprise production environments.

Deliver Scalable, Production-Ready Containerized Applications with Avi Vantage

Applications based on microservices architecture require a modern, distributed application services platform to deliver an ingress gateway. Traditional appliance-based ADC solutions are no longer an option for web-scale, cloud-native applications deployed using container technology as microservices. Kubernetes container clusters can have tens and hundreds of pods, each containing hundreds and thousands of containers, mandating full automation,policy driven deployments and elastic container services.

Avi Vantage is based on a software-defined, scale-out architecture that provides traffic management, security, observability and a rich set of tools to ease application maintenance and rollouts. You can deploy and automate in six steps:

  • Deploy a lightweight, distributed fabric of proxy services alongside nodes in the container cluster
  • Visualize the interactions between microservices through application maps that adapt and monitor as containers spin up and down
  • Automate service discovery and dynamically map between a service name and its IP address for ephemeral containers
  • Observe and collect analytics through Avi Service Engines and provide Kubernetes load balancing with autoscaling based on real-time traffic
  • Integrate with container orchestration platforms like Kubernetes to automate the deployment and management of containers
  • Extend application services with an ingress gateway for secure service-to-service communication in multi-cluster, multi-region and multi-cloud environments

Application and Networking Services for Kubernetes

Avi Networks provides a centrally orchestrated, elastic proxy services fabric with dynamic load balancing, service discovery, security, micro-segmentation, and analytics for container-based applications running in Kubernetes environments.

Enterprises adopting Kubernetes need a cloud-native approach for traffic management and application networking services, which Avi Networks provides. Avi Networks delivers scalable, enterprise-class container ingress to deploy and manage container-based applications in production environments accessing Kubernetes clusters.

Kubernetes Ecosystem

Avi Networks has a cloud connector model that is agnostic to the underlying Kubernetes cluster implementations. The Avi Controller integrates via REST APIs with Kubernetes ecosystems including Google Kubernetes Engine (GKE), VMware Pivotal Container Services (PKS), Red Hat OpenShift, Amazon Elastic Kubernetes Service (EKS), Azure Kubernetes Service (AKS), IBM Cloud Kubernetes Service, and more.

The Avi Vantage Platform provides a container services network with a centralized control plane and distributed proxies:

  • Avi Controller: A central control, management and analytics plane that communicates with the Kubernetes master, deploys and manages data plane proxies (Avi Service Engines), configures services and aggregates telemetry analytics from Avi Service Engines.
  • Avi Service Engines: A service proxy deployed on every Kubernetes node providing the application services in the dataplane and reporting real-time telemetry analytics to the Avi Controller.

Multi-Cloud Load Balancing for Kubernetes

Avi extends L4-L7 services with automation, elasticity/autoscaling and continuous delivery onto Kubernetes Platform-as-a-Service (PaaS). Also, Avi provides unprecedented visibility into Kubernetes applications showing service dependencies using application maps.

Enterprise-class load balancing for mission-critical application deployments in Kubernetes clusters.

  • Load balancing for L4 (TCP/UDP) and L7 (HTTP, DNS) with autoscaling
  • Extension to multi-cluster, multi-cloud and global server load balancing (GSLB)
  • Session persistence for HTTP cookie, source IP, TLS ticket, caching and compression
  • URL switching and redirection, content modification for header and payload
  • Priority pool and traffic migration for blue-green, canary deployment patterns

Avi Controller aggregates this information from Avi Service Engines, making it available via dashboards and REST APIs for quick utilization by network administrators.

  • Over 500 individual metrics across L4/L7 application services
  • Logs of every HTTP or TCP/UDP transaction
  • Dynamic application maps visualizing service-to-service communications
  • End-to-end timing from end users to applications
  • Application health score, client and security insights

Avi Vantage offers a secure services fabric for enterprise-class applications deployment. It includes the following high performance security capabilities:

  • TLS/SSL protocol offload and secure TLS certificate/key management
  • Micro-segmentation for IP address and microservices-based security access policies
  • Web Application Firewall (WAF) for L7 applications
  • DDoS detection and mitigation for L4 and L7 attacks
  • Single sign-on (SSO) integration for enterprise-grade authentication and authorization

Automated Application and Network Services from Avi

Capabilities include:

  • Distributed Service Proxy
  • Real-time Application Insights and Visibility
  • Predictive Autoscale
  • Web Application Security and Micro-segmentation
  • Blue-Green/Canary App Deployment
Automated Application and Network Services from Avi

Kubernetes Networking and Container Services Resources

Avi Networks provides comprehensive resources to properly understand, configure, deploy and optimize business-critical workloads in production environments using Kubernetes clusters.

  • Getting Started / Installation Guide
  • Creating Role/Service Accounts in Kubernetes
  • Using Kubernetes Services
  • Configuring Kubernetes Routes
  • Achieving graceful Blue/Green Application Deployments
  • Identifying Kubernetes Projects Using Source IP Addresses
Virtual Summit