Exploring multi-tenancy for my Kubernetes learning platform, with Stefan Roman
Description
Stefan Roman shares his experience building Labs4Grabs, a platform that gives students root access to Kubernetes clusters. He discusses the journey from evaluating simple namespace-based isolation to implementing full VM-based isolation with KubeVirt.
You will learn:
Why namespace isolation isn't sufficient for untrusted users and the limitations of tools like vCluster when running privileged workloads.
How to use KubeVirt to achieve complete workload isolation and the trade-offs.
Practical approaches to implementing network security with NetworkPolicies and managing resource allocation across multiple student environments.
Follow Stefan's journey from simple to complex isolation strategies, focusing on the technical decisions and trade-offs he encountered.
Sponsor
This episode is sponsored by Kusari — gain complete visibility into your software components and secure your supply chain through comprehensive tracking and analysis.
More info
Find all the links and info for this episode here: https://ku.bz/Xz-TrmX2F
Interested in sponsoring an episode? Learn more.
United States
