|
|
|
|
|
|
by slt2021
438 days ago
|
|
|
If the goal of gathering and attributing VPC flows is to have a workload granularity flow logs, then imho gathering mesh level logs is more direct and atraight forward approach, because mesh(and workload orchestrator) are uniquely qualified to know when workload A is running on a host X and is trying to connect to workload B. Looking at Envoy access logs for example is more straightforward and simple aplroach, than running distributed ebpf and memory intensive large spark streaming job |
|
|
Service mesh may have restrictions on the network protocols and may not cover all network traffic (like connections to Kafka and databases).