Kubernetes Networking with Calico

Explore how Calico assigns pod IPs using IP pools and block affinity.

Understand how pods communicate within a node using the Calico CNI plugin.

Learn how traffic is routed between pods on different nodes using host routing.

Deep dive into how ClusterIP services route traffic via iptables and kube-proxy.

Explore CoreDNS and how Kubernetes resolves service names to cluster IPs.

Configure VXLAN and IP-in-IP overlays for cross-subnet pod communication.

Set up BGP peering between Calico nodes to exchange pod routes dynamically.

Advertise LoadBalancer service IPs to external networks via BGP.

Create and assign multiple IP pools to segregate workloads by namespace or node.

Announce pod IP ranges to upstream routers for direct external pod access.

Use headless services to discover individual pod IPs directly via DNS.

Apply ingress and egress bandwidth limits to pods using Calico annotations.

Enable transparent WireGuard encryption for all pod-to-pod traffic in the cluster.

Configure Calico for dual-stack networking with both IPv4 and IPv6 pod addresses.

Control which nodes peer with which BGP neighbors using node selectors.

Assign fixed IP addresses to specific pods using Calico IPAM annotations.

Speed up DNS resolution by running a local DNS cache daemonset on every node.

Tune MTU settings across your cluster to optimise throughput and avoid fragmentation.

Configure Ingress resources with Calico network policy for fine-grained traffic control.

Secure Ingress endpoints with TLS certificates issued by cert-manager.