product iamge

Consul: Up and Running: Service Mesh for Any Runtime or Cloud

This document was uploaded by one of our users. The uploader already confirmed that they had the permission to publish it. If you are author/publisher or own the copyright of this documents, please report to us by using this DMCA report form.

Download
Search on Amazon

Simply click on the Download Book button.

Yes, Book downloads on Ebookily are 100% Free.

Sometimes the book is free on Amazon As well, so go ahead and hit "Search on Amazon"

With the advent of microservices, Kubernetes, public cloud, and hybrid computing, site reliability and DevOps engineers are facing more complexity than ever before. Service mesh is an exciting new technology that promises to help tackle this complexity. A service mesh provides you with a unified control plane to manage application networking across these distinct platforms. With this definitive guide, you'll learn how to automate networking for simple and secure application delivery with Consul. Author Luke Kysow, Consul engineer at HashiCorp, demonstrates how this service mesh solution provides a software-driven approach to security, observability, reliability, and traffic management. Once you learn how to deploy Consul on multiple platforms, you'll be able to take control of application traffic, prevent outages, view metrics, integrate with legacy systems, and more. • Dive into the characteristics of service meshes, zero trust networking, and traffic-shaping patterns • Deploy Consul on Kubernetes and virtual machines • Learn how to secure, monitor, and manage your application traffic with Consul • Use this guide to deploy and operate applications as a platform operator, DevOps engineer, or developer

With the advent of microservices, Kubernetes, public cloud, and hybrid computing, site reliability and DevOps engineers are facing more complexity than ever before. Service mesh is an exciting new technology that promises to help tackle this complexity. A service mesh provides you with a unified control plane to manage application networking across these distinct platforms.

With this definitive guide, you'll learn how to automate networking for simple and secure application delivery with Consul.

Author Luke Kysow, Consul engineer at HashiCorp, demonstrates how this service mesh solution provides a software-driven approach to security, observability, reliability, and traffic management. Once you learn how to deploy Consul on multiple platforms, you'll be able to take control of application traffic, prevent outages, view metrics, integrate with legacy systems, and more.

  • Dive into the characteristics of service meshes, zero trust networking, and traffic-shaping patterns
  • Deploy Consul on Kubernetes and virtual machines
  • Learn how to secure, monitor, and manage your application traffic with Consul
  • Use this guide to deploy and operate applications as a platform operator, DevOps engineer, or developer

Author(s): Luke Kysow
Edition: 1
Publisher: O'Reilly Media
Year: 2022

Language: English
Commentary: Vector PDF
Pages: 260
City: Sebastopol, CA
Tags: DevOps; Cloud Computing; Security; Reliability; Continuous Delivery; Continuous Integration; Distributed Tracing; Observability; Service Mesh; Zero Trust Networks; Metrics; Traffic Management; Authentication; Consul

Cover
Copyright
Table of Contents
Foreword
Preface
Who Should Read This Book
Navigating This Book
What Is Not in This Book
Conventions Used in This Book
Using Code Examples
O’Reilly Online Learning
How to Contact Us
Acknowledgments
Chapter 1. Service Mesh 101
How a Service Mesh Works
Sidecar Proxies
Control Plane
Concrete Example
Why Use a Service Mesh
Security
Observability
Reliability
Traffic Control
Features in Combination
When to Use a Service Mesh
Summary
Chapter 2. Introduction to Consul
Architecture
Consul Servers
Consul Clients
Sidecar Proxies
Example Use Case
Consul Versus Other Meshes
Consul’s Other Features
Summary
Chapter 3. Deploying Consul
Deploying Consul on Kubernetes
Provisioning a Kubernetes Cluster
Installing Consul with the consul-k8s CLI
Deploying Consul on VMs
Provisioning a Local VM
Installing and Configuring Consul
systemd
Interacting with Consul
Consul’s UI
Consul’s CLI
Consul’s API
Summary
Chapter 4. Adding Services to the Mesh
Birdwatcher Example Service
Deploying Services on Kubernetes
Adding Kubernetes Services to the Mesh
Deploying Services on VMs
Registering VM Services with Consul
Deploying Sidecar Proxies on VMs
Configuring Routing on VMs
Summary
Chapter 5. Ingress Gateways
Why You Need an Ingress Gateway
Deploying an Ingress Gateway on Kubernetes
Deploying an Ingress Gateway on VMs
Config Entries
Config Entries on Kubernetes
Config Entries on VMs
Configuring Ingress Gateways
Configuring Ingress Gateways on Kubernetes
Configuring Ingress Gateways on VMs
Testing Out Your Ingress Gateway
Ingress Gateways in Production
Summary
Chapter 6. Security
Zero Trust Networking
Encryption
TLS Encryption
Consul Encryption
Authentication
Authorization and Intentions
Configuring Intentions with Consul’s UI
Configuring Intentions with Config Entries
Application Aware Intentions
Summary
Chapter 7. Observability
Metrics
Deploying and Configuring Prometheus
Emitting Metrics
Viewing Consul UI Metrics
Grafana
Distributed Tracing
How Tracing Works
Instrumenting Your Services
Tracing Collectors
Viewing Service Traces
Enabling Tracing for the Service Mesh
Analyzing Service Mesh Traces
Summary
Chapter 8. Reliability
Health Checking
Active Versus Passive Health Checking
Configuring Active Health Checks
Passive Health Checks
Retries
Timeouts
Summary
Chapter 9. Traffic Control
Deployment Strategies
Rolling Deployments
Blue/Green Deployments
Canary Deployments
Load Balancers Versus the Service Mesh
Traffic Control Config Entries
Service Resolvers
Service Splitters
Service Routers
Canary Deployments with Consul
Deploying backend v2 on Kubernetes
Deploying backend v2 on VMs
Canary Deployment Continued
Other Traffic Control Use Cases
Summary
Chapter 10. Advanced Use Cases
Multi-cluster Federation
Consul API Gateway
Terminating Gateways
HashiCorp Vault Integration
Connect Native
Network Infrastructure Automation
Securing Consul
ACLs
Gossip Encryption
Control Plane TLS
Consul Enterprise
HashiCorp Cloud Platform
Amazon Elastic Container Service (ECS)
Nomad
Conclusion
Appendix A. Common Errors
Index
About the Author
Colophon