Overview

Solo.io is excited to be participating at KubeCon + CloudNativeCon Europe 2022. At this year’s event, we are thrilled to be a Silver sponsor and to be presenting the keynote along with several sessions at ServiceMeshCon on 17 May. Our team will also be presenting at eBPF Day on 16 May. And, be sure to stop by and see us at the Solutions Showcase during KubeCon from 18 – 20 May at Booth S10!

Won’t be at KubeCon in person this year? No problem, visit our virtual booth from 16 – 20 May.

Request a Meeting

The Solo.io team of experts and engineers will be available for a demo and discuss how the Gloo portfolio can enable your application networking use cases for the Edge and Service Mesh.

Schedule

May 16

10:30 - 11:00 CEST

Solo.io Virtual Booth

Solo.io Virtual Booth Session

Log4Shell Meets Its Match: Remediation Approaches and Lessons Learned

Speakers | Jim Barton, Field Engineer

Review the anatomy of a Log4Shell attack. Discuss how Solo customers can protect against it and similar attacks with policy-based solutions that require no changes to protected systems.

May 16

14:05 - 14:35 CEST

Feria Valencia + Virtual

eBPF

Step by Step Kubernetes Observability with eBPF

Speakers | Denis Jannot, Dir. of Field Engineering, EMEA & Lin Sun, Dir, of Open-Source

In this talk, we’ll exploring how someone can use eBPF to get insights about the communications happening in a Kubernetes cluster. We write an eBPF program and then use the BumbleBee (https://github.com/solo-io/bumblebee) open source project to build and deploy it. This program gathers information about all the network communications happening in the cluster and publish the corresponding metrics that we store on Prometheus. We then deploy a service gets the metrics and correlate them with the Pod and Service IP addresses to build a graph displaying all the communications.

May 17

9:25 CEST

Feria Valencia + Virtual

ServiceMeshCon

Keynote: Expanding the 80/20 Rule for Creating Service Mesh Value

Speakers | Idit Levine, CEO and Founder

While service mesh usage continues to grow, far too many companies are only seeing value from mTLS and observability. 80% of their value comes from 20% of the capabilities. As we connect and secure the world’s modern applications, we must strive to bring value to a broader set of use-cases. This means not only improving the performance and simplifying operations, but also exposing more of the value of service mesh to application teams, security teams, and ultimately to the forefront of the business.

In her talk, Idit Levine, CEO of Solo.io, will discuss innovative use cases that can be enabled by extending a service mesh. She will explore how the flexibility of mesh architectures can be used to enable more flexible, more secure, and more powerful usage patterns for companies.

May 17

10:00 - 10:30 CEST

Solo.io Virtual Booth

Solo.io Virtual Booth Session

Envoy Config at a Glance with EnvoyUI

Speakers | Denis Jannot, Dir. of Field Engineering - EMEA

EnvoyUI lets you upload a raw Envoy config dump to easily understand the overall configuration (listeners, matchers, routes, clusters, …). The file is analyzed in your browser, so it never leaves your computer. In this lightning talk, we’ll go through an Envoy config dump generated by Istio to demonstrate how this tool can be used to troubleshoot an issue.

May 17

10:30 - 11:00 CEST

Feria Valencia + Virtual

ServiceMeshCon

Shhh, It is a Secret: Manage Your Workload Certs in Service Mesh without Persisting any Secrets

Speakers | Lin Sun, Dir, of Open-Source

Most service mesh projects provide self signed CA but that is NON-STARTER for a production environment as most organizations already have their PKI system in place before they adopt any service mesh. While many service mesh projects have added the support for plugging in your intermediate CA or external PKI system, they however require persisting the intermediate or root CA’s private key as Kubernetes secrets which is a security concern for them. This talk discusses a few innovative approaches in the service mesh community to tackle this challenge and the tradeoffs among them.

May 17

11:40 - 11:50 CEST

Feria Valencia + Virtual

ServiceMeshCon

Lightning Talk: Move Over API Gateway...into your Service Mesh

Speakers | Marino Wijay, Developer Advocacy and Relations

They say API Gateways are for your “north-south” traffic into your clusters and Service Mesh is for your “east-west” traffic. Is this really the case? As you deploy a service mesh for high availability, failover, and tenancy, you will find north/south and east/west start to converge. Instead of thinking of API Gateways and Service Mesh as separate and different, we should be thinking of them as the same thing. In this talk, we explore the role of modern API gateway and how we can make it part of the service mesh.

May 17

13:20 - 13:30 CEST

Feria Valencia + Virtual

ServiceMeshCon

Lightning Talk: GitOps and Controllers: It's Not That Simple for Multi-cluster

Speakers | Alex Ly, Field Engineer

GitOps has become a valuable approach to manage configuration for applications and infrastructure. Having a source of truth that can be automated, auditable, and is easy to understand is increasingly important when expanding to many deployments. However, enabling multi-cluster capabilities typically presents new challenges: not every cluster is the same, context is important, and managing every lower- level configuration across multiple environments can get cumbersome (and dangerous) quickly. This talk will focus on a specific example where multi-cluster GitOps is difficult: application-networking and security with service mesh. The goal is for platform teams to provide the right point of demarcation with abstractions that focus on the intent, while abstracting away the translation and orchestration of lower-level config (mesh-specific API resources in this case). We share our experiences building these abstractions with some of the largest deployments of service mesh in the world.

May 17

14:10 - 14:40 CEST

Feria Valencia + Virtual

ServiceMeshCon

Unleash Declarative Data Access with GraphQL

Speakers | Sai Ekbote, Software Engineer & Kevin Dorosh, Tech Lead

GraphQL is redefining the way that developers interact with APIs, putting application clients in control of the data they consume and placing new requirements on the platforms hosting these APIs. Understanding when to write code and when to let the platform do the work is a critical tradeoff to understand as you scale GraphQL adoption. In this talk, Kevin and Sai will share experience building GraphQL support directly into Envoy to support edge gateway and service mesh use cases. They will cover common deployment patterns, GraphQL-specific implications to security and policy controls, instrumenting existing mesh services (REST, gRPC, SOAP, Lambda) with GraphQL, and the benefits and tradeoffs between declarative and programmatic approaches to GraphQL composition. This will be a hands-on session with live demos and real talk, focused on lessons learned implementing GraphQL at scale. If you are a developer or platform engineer deploying GraphQL in your service mesh, this talk is for you!

May 17

15:30 - 16:00 CEST

Feria Valencia + Virtual

ServiceMeshCon

Organize Your Mesh - How to Run a Multi-Tenant Service Mesh in Production

Speakers | Christian Posta VP, Global Field CTO, Solo.io

Service meshes offer a breadth of benefits from securing to adding reliability to gaining visibility into your applications. However, as you start to scale your environment and start onboarding different teams or applications into the mesh you run into challenges of tenant isolation in terms of configuration management, resource consumption and security. In this session, Christian will present how to securely operate and run a multi-tenant mesh in production using the primitives available from service mesh like Istio. You will also learn how to take these concepts from a single cluster to multi cluster environment and successfully run applications across different clusters in a multi tenant unified service mesh.

May 17

16:25 - 17:05 CEST

Feria Valencia + Virtual

ServiceMeshCon

Panel Discussion-The Future of ServiceMesh: Is eBPF a Silver Lining or a Silver Bullet

Speakers | Idit Levine (Solo.io), William Morgan (Buoyant), Thomas Graf (Isovalent). Moderated by Craig Box (Google)

Service mesh implementations normally take one of two forms: a proxy per node, or a proxy per workload (the so-called “sidecar”). Linkerd went from A to B. Cilium is suggesting we can go from B to A. Is eBPF a savior, or are we hyper-optimizing a tiny piece of the datapath? And what else might the future of service mesh hold?

May 18

10:30 - 11:00 CEST

Solo.io Virtual Booth

Solo.io Virtual Booth Session

Business Continuity with Gloo Mesh

Speakers | Marino Wijay, Developer Advocacy and Relations

Disaster Recovery and Avoidance are critical to ensuring that applications continue to be available. In this talk, we discuss how Gloo Mesh leverages Traffic Policies to mitigate disasaters and downtime.

May 18

11:00 - 11:30 CEST

Solo.io Virtual Booth

Solo.io Virtual Booth Session

GitOps and Controllers: It's Not That Simple for Multi-cluster

Speakers | Alex Ly, Field Engineer

GitOps has become a valuable approach to manage configuration for applications and infrastructure. Having a source of truth that can be automated, auditable, and is easy to understand is increasingly important when expanding to many deployments. However, enabling multi-cluster capabilities typically presents new challenges: not every cluster is the same, context is important, and managing every lower- level configuration across multiple environments can get cumbersome (and dangerous) quickly. This talk will focus on a specific example where multi-cluster GitOps is difficult: application-networking and security with service mesh. The goal is for platform teams to provide the right point of demarcation with abstractions that focus on the intent, while abstracting away the translation and orchestration of lower-level config (mesh-specific API resources in this case). We share our experiences building these abstractions with some of the largest deployments of service mesh in the world.

May 19

10:30 - 11:00 CEST

Solo.io Virtual Booth

Solo.io Virtual Booth Session

Unleash Declarative Data Access with GraphQL

Speakers | Sai Ekbote, Software Engineer and Kevin Dorosh, Tech Lead

May 19

11:00 - 12:30 CEST

Feria Valencia + Virtual

KubeCon + CloudNativeCon

Cloud-Native Building Blocks: An Interactive Envoy Proxy Workshop

Speakers | Jim Barton, Field Engineer & Adam Sayah, Field Engineer

Envoy Proxy is a foundational layer for many of the innovations propelling the Kubernetes community, including service meshes and cloud-native API gateways. But many engineers understand it only as a black-box, hidden by simplifying levels of abstraction. The purpose of this workshop is to provide a hands-on workshop that will bridge those gaps in Envoy understanding. Participants will explore first principles regarding Envoy architecture, filter chains, and a day-in-the-life of a request. Users will then put those principles to work interactively. Every participant will have access to a computing environment via their web browsers to a Kubernetes K3s platform provisioned with Envoy and supporting tools. From there, users will explore the life of a request through a maze of transforms, custom processing with WebAssembly, and request routing. They will further learn to employ standard Envoy tools like metrics, access logging, and the Tap filter to solve real-world problems.

Just for Fun

May 18,2022

Join us at THE ROOF for networking and cocktails

Time

20:30 to 00.00 CEST

Location

Marina Valencia, Explanada Veles e Vents, Local C2 · VALENCIA

Feeling lucky?

Stop by our booth (S10) to enter for a chance to win a Millennium Falcon Lego Set. We will be raffling off one per day!

Virtual giveaways at KubeCon!

Visit our virtual booth at KubeCon and enter our giveaway for a chance to win Apple AirPods! We will be raffling off 1 pair of Apple AirPods during Solo.io’s virtual booth hours during KubeCon.

We Are Hiring!

We believe that great architecture is the key to successful software development. And we make this possible by building great teams. If you are passionate about cloud native technologies like containers, Kubernetes, Istio, Envoy Proxy, GraphQL, eBPF, serverless functions, and more, then Solo.io is the place for you!

Here are just a few of the open positions we’re hiring for, but be sure to check out the Careers page on our website, or chat with us in person!