Skip to content

fix(k8s): tutorial fix headline #4171

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 3 commits into from
Jan 6, 2025
Merged

fix(k8s): tutorial fix headline #4171

Changes from all commits
Commits
Show all changes
3 commits
Select commit Hold shift + click to select a range
e7a34bc
fix(k8s): tutorial fix headline
bene2k1 Jan 6, 2025
f25a7ec
fix(k8s): fix tuto formatting
bene2k1 Jan 6, 2025
9e85995
fix(k8s): fix tuto formatting
bene2k1 Jan 6, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
12 changes: 5 additions & 7 deletions tutorials/enabling-encryption-in-kapsule-with-cilium/index.mdx
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,17 +1,16 @@
---
meta:
title: Enabling Encryption in Kapsule (Kubernetes 1.31) with Cilium
title: Enabling encryption in Kapsule (Kubernetes 1.31) with Cilium
description: Learn how to enable WireGuard encryption in Scaleway’s Kapsule Managed Kubernetes service using Cilium. This guide covers configuration steps, verification, and testing encryption for secure network traffic.
content:
h1: Enabling Encryption in Kapsule (Kubernetes 1.31) with Cilium
h1: Enabling encryption in Kapsule (Kubernetes 1.31) with Cilium
paragraph: Learn how to enable WireGuard encryption in Scaleway’s Kapsule Managed Kubernetes service using Cilium. This guide covers configuration steps, verification, and testing encryption for secure network traffic.
tags: hashicorp vault kubernetes k8s easy deploy
tags: encryption cilium kapsule wireguard
categories:
- containers
dates:
validation: 2024-12-31
posted: 2024-12-31
validation_frequency: 24
---


Expand All @@ -25,7 +24,7 @@ By default, Cilium is selected as the CNI when creating a cluster. We will confi
- `kubectl` installed and configured for your cluster.
- Cilium is selected as the [CNI](/containers/kubernetes/concepts/#container-network-interface-cni) in your cluster (default in Kapsule).

## Creating a `CiliumNodeConfig` resource for encryption
## Creating a CiliumNodeConfig resource for encryption

The `CiliumNodeConfig` resource defines encryption settings for Cilium. It enables **WireGuard encryption** across all nodes in your Kapsule cluster.

Expand Down Expand Up @@ -78,7 +77,7 @@ After creating the `CiliumNodeConfig`, you must restart Cilium to apply these en

In this step, you will deploy test applications along with a `tcpdump` DaemonSet to observe network traffic before and after enabling encryption.

### 3.1 Deploying test applications and `tcpdump`
### Deploying test applications and tcpdump

Below is an example YAML manifest that deploys:

Expand Down Expand Up @@ -265,4 +264,3 @@ You should now see traffic matching **port 51871**, indicating the packets are e
Enabling encryption may slightly increase CPU usage on the nodes. Monitor resource utilization to ensure adequate capacity.

For more details, refer to [Cilium’s WireGuard Encryption Documentation](https://docs.cilium.io/en/stable/security/network/encryption-wireguard/).

Loading