Recently, we released a new hands-on tutorial for Securing Consul and Registered Services on Kubernetes using the official HashiCorp Consul Helm chart for Kubernetes.
In this tutorial, you will:
Review the types of Consul service mesh traffic
Install an unsecured Consul service mesh on Kubernetes for development or debugging
Verify that gossip encryption, TLS, and ACLs are not enabled
Upgrade the installation to enable gossip encryption, TLS, and ACLs
Verify that gossip encryption, TLS, and ACLs are enabled
Deploy two example services to the service mesh
Configure zero-trust networking using Consul intentions
»HashiCorp Consul with Kubernetes
Consul has a set of features to support first-class integration with Kubernetes. The official Helm Chart simplifies the deployment and maintenance of Consul on Kubernetes. The gossipEncryption, enableAutoEncrypt, and manageSystemACLs features along with Consul intentions, enable a low touch security configuration process.
In addition to enhanced features, the integration extends the scalability and simplicity of Consul to Kubernetes. Consul is a universal service mesh that can securely connect services within and beyond Kubernetes, creating a seamless experience.
»What’s next
Try the new HashiCorp Learn tutorial on a local Kubernetes cluster.
