Theory and hands-on session on architecting Kubernetes clusters in the most efficient way with vCluster. We'll look at the pros and cons of different approaches and compares cost efficiency, ease of management resilience and security for different setups. How can you isolate your workloads with different security trade-offs depending on how trustworthy your tenants are? How to estimate costs and efforts in building a single shared cluster vs multiple clusters.
In this hands-on session you'll learn how to isolate workloads and ensure they don't interact with each other (or they do so in a controller manner)? How namespaces work and their limitation. How to use vCluster to achieve isolation? What additional tools and techniques do you need to provide more isolation (e.g., sandboxed container runtimes, dedicated ingress controller per namespace, layer7 authorization policies, Kubernetes API QoS, etc.)
This session explores building a Kubernetes platform for teamwork, focusing on establishing tenant trust, optimizing resource use, and steering best practices. Learn cluster partitioning for security and workload efficiency, compare isolation tools against costs, and manage diverse environments. Highlights include vCluster for improved segregation and balancing flexibility with control in multi-tenant setups.
