GitHub user hpvd edited a discussion: Example for Pulsar secured by Cilium
For Kafka it's easy to level up security by using Cilium. Cilium is a networking, observability, and security solution with an eBPF-based dataplane. How it works to secure Kafka with Cilium: Traditional firewalls operate at Layer 3 and 4. A protocol running on a particular port is either completely trusted or blocked entirely. Cilium provides the ability to filter on individual application protocol requests: e.g. for Kafka: **Allow service1 to produce on Kafka topic topic1 and service2 to consume on topic1. Reject all other Kafka messages.** from readme https://github.com/cilium/cilium Details in Doc: https://docs.cilium.io/en/stable/security/kafka/ => Are there already any ideas/efforts/POCs know to bring these possibilities to the combination of Pulsar and Cilium? Cilium seems to become the standard replacement for kube proxy plus IP tables these days, so missing Pulsar support should not be the gatekeeper for enterprises... GitHub link: https://github.com/apache/pulsar/discussions/20650 ---- This is an automatically sent email for [email protected]. To unsubscribe, please send an email to: [email protected]
