GitHub user hpvd edited a discussion: Example for Pulsar secured by Cilium
For Kafka it's easy to level up security by using Cilium. Cilium is a networking, observability, and security solution with an eBPF-based dataplane. How it works to secure Kafka with Cilium: Traditional firewalls operate at Layer 3 and 4. A protocol running on a particular port is either completely trusted or blocked entirely. Cilium provides the ability to filter on individual application protocol requests: e.g. for Kafka: **Allow service1 to produce on Kafka topic topic1 and service2 to consume on topic1. Reject all other Kafka messages.** from readme https://github.com/cilium/cilium Details in Doc: https://docs.cilium.io/en/stable/security/kafka/ **=> Are there already any ideas/efforts/POCs know to bring these possibilities to the combination of Pulsar and Cilium?** Cilium seems to become the standard replacement for kube proxy plus IP tables these days, so missing Pulsar support should not be the gatekeeper for enterprises... GitHub link: https://github.com/apache/pulsar/discussions/20650 ---- This is an automatically sent email for [email protected]. To unsubscribe, please send an email to: [email protected]
