-
Notifications
You must be signed in to change notification settings - Fork 450
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Is it possible to tap and stream L4 traffic? #926
Comments
Hi @pxpnetworks |
Could describe what is the problem you are facing? |
Hi @nimrod-up9 , Sure, I understand Mizu specializes in L7 :) Thanks for your comment and will see what the future holds 👍 BR, |
@pxpnetworks thanks for your question - can you clarify how would you like the TCP (L4) traffic presented - do you mean to see plain packet contents (tcpdump-style) or something different ? |
Hi @haiut , To be honest i would like to see at this point just the communication flowing on L4 on the left hand side with basic IP:PORT info (source pod / destination pod too if possible). I'm not interested in seeing the TCP flags tcpdump style. Right now I tap into such L4 proxy pod and see nothing in the UI. When i do a service rollout i think Mizu can be a great tool to observe if the traffic is flowing as intended and catch any issues on the fly. (I know there are lots of other tools and methods to do this but again speaking from an end user perspective i find Mizu most appealing to me from the first try). In the end if you decide it's worth and feasible to add showing the L4 traffic probably it needs to map to some kind of TCP flags similar to response.status/request.method for HTTP but it might be too noisy to live stream it. Don't know if something simpler tracking only Started / Completed TCP sessions will make more sense if the intention after all is not to make Mizu like tcpdump :) BR, BR, |
At first I also missed L4 information as I wanted to investigate some networking anomalies we were facing. Another thing is that some of our services are communicating with external endpoints via https and this traffic is also not covered. I understand that this might not be the case for Mizu and agree that it might be too noisy to get this presented. Anyway, thanks for the great tool! |
Regarding the external endpoints: Mizu is actually able to tap HTTPS traffic :) About the L4 support, we are considering if and how to display it. |
Yes, I tried this flag out and it didn't work in our case. It seems the problem was that I tried to tap the Java service. Thanks for the clarification! |
+1 I’d also like to see L4 support. My applications have a mix of HTTP and proprietary TCP messages. |
@mudged would you mind opening a feature request issue? Can you clarify how would you like the TCP (L4) traffic presented - do you mean to see plain packet contents (tcpdump-style) or something different ? |
Sorry for the intrusion, I can add my use case that I think is partially related. I would love to be able to use kubeshark for udp traffic as well. this would be for example useful when troubleshooting DNS in a cluster. Are there any plans to support UDP-based protocols? |
@whites11 intrusion is very welcome! We are evaluating introducing DNS protocol support. I'm curious how common this need is. |
I have a lot of pods which process/proxy pure TCP traffic .. is it possible to have it tapped too or it only shows L7 traffic in the UI ?
BR,
Stoyan
The text was updated successfully, but these errors were encountered: