What is Calico?

 

What is Calico 

Calico is a third-party solution developed to provide flexibility and simplify configuring Kubernetes network connectivity. It is available on all the major cloud platforms and can be installed on bare metal servers. Managing networks in Kubernetes is a complex job that requires experienced administrators

Calico is an open-source CNI (Container Network Interface) plugin for network management developed by Tigera. The plugin aims to simplify Kubernetes networking while making it more scalable and secure.

The NetworkPolicy API, the out-of-the-box network policy management solution for Kubernetes, has a restricted set of features. Limited to a single environment, users can apply network policies created using this API only to labeled pods. Network rules deal only with protocols and ports and can be applied to pods, environments, and subnets.

Calico improves the default Kubernetes networking experience in the following ways:

Rules can use actions like logging, restricting, or permitting. This feature provides administrators with greater flexibility in network configuration.

Aside from ports and protocols, rules can specify port ranges, IPs, node selectors, etc., allowing for a more granular approach to networking.

It extends the list of Kubernetes objects to which users can apply network policies with containers, interfaces, and virtual machines.

It enables the use of DNAT settings and traffic flow management policies.

Interoperability between Kubernetes and non-Kubernetes workloads is possible.

references: