Cilium is an open source software for providing, securing and observing network connectivity between container workloads - cloud native, and fueled by the revolutionary Kernel technology eBPF.

Cilium is a popular CNI and a lot of people are interested in understanding how it works.

In this workshop, I will review the following:

- Deployment of Cilium (including hubble) on a KinD Kubernetes cluster

- Deployment of the bookinfo application

- Looking at the service to service communication using the Hubble UI and then looking at the gRPC endpoint which provides the data used by the UI to build the graph

- Leveraging network policies to secure service to service communications and diving into how L4 and L7 policies are enforced (through eBPF and Envoy)