AWS transit gateway allows you to connect VPCs, direct connects and VPNs through a central hub. Traditionally in networking this is known as the hub and spoke model. In AWS cloud, this simplifies network connectivity and offers scalable and robust way of stiching networks together privately.

One of the requirements of the k8s networking model is that all pods running in a host are able to communicate with each other. This flat networking model posses some security challenges in clusters that are multi-tenanted. So for an MSP running multiple customer applications on a single cluster; this can lead to customers accessing each other’s service. Even in a setup where multiple business units share a common cluster having a network security policy is needed from a goverance and…

SONiC is a subproject within the Open Compute Foundation https://www.opencompute.org/wiki/Networking/SONiC. Networking industry has primarily been operating similar to mainframes, i.e. you buy your hardware and software from the same vendor. Over the last decade we have been seeing the rise of disaggregated models where the end users could purchase hardware from a vendor but run software from another vendor. In this post we will do an introduction to SONiC and attempt to get kick started with…