►
From YouTube: Entendiendo como funciona kube-proxy en modo IPVS
Description
Kube-proxy es el componente de Kubernetes responsable de reconciliar el estado de los recursos de tipo Service. Este componente puede ser configurado en cuatro modos distintos: userspace, iptables, IPVS o Kernel space (Windows). En grandes escalas, el modo IPVS resulta en un mejor desempeño lo cual resulta en una opción atractiva. En esta sesión, se intentara explicar el funcionamiento de IPVS y como Kubernetes automatiza la administración de servicios a traves de ejemplos básicos.
Sigue a Victor en:
- https://twitter.com/electrocucarach
- https://www.linkedin.com/in/electrocucaracha/
A
B
B
A
My
name
is
Víctor
Morales
I
am
an
engineer
who
currently
works
for
Samsung
in
the
area
of
,
open
source
and
I
have
been
working
in
it
for
around
15
years
In
these
15
years,,
the
industry,
has
worked
in
different
roles,
conditions,
technologies,
such
as
mediaba,,
python,
go,
and
I
have
contributed
to
different
communities,
posts
in
certain
communities,,
like
that,,
think
about
easy
on
up,
and
now
in
science,.
This
really
defines
my
particular
role,.
It
has
been
done
throughout
The
years.
A
A
The
technology
that
we
know
about
the
technology
is
from
the
architecture
and
what
everything
is
taking
place.
So
in
this
case,
we
are
going
to
do
an
approach
to
this
one.
We
are
going
to
really
see
what
worker
now
and
the
different
steps
then,
and
why
the
use
this
technology
or
put
pressure
on
them
with
kick
boxing,
because
I
believe,
and
it
is
important
that
sinai
siena
does
so,
as
we
know,.
It
is
the
component
that
assigns
ips
to
the
part
of
the
cabling
and
connects
because,
being
so,.
A
The
spots
are
containers,.
The
first
thing
that
happens
is
that
when
the
100
has
to
run
and
stop
the
configuration
creates
a
beach
interface
for
us.
We
don't
see
in
this
case
it's
cool
0.
Then
we
see
the
generally.
This
is
done
by
being
plans,
or
it
can
be
this
chalice
like
any
of
them.
Then,
when
you
receive
a
remember
creation
of
turbinates
this,
what
this
simple
led
club
receives
that
call
communicates
with
the
the
ping
and
it
said
to
create
the
part
of
the
creation
of
it
for
good.
A
The
part
of
the
bridge
with
this
pot.
This
main
space
jam
is
traded
to
logic
and
I,
attend
quality
to
china,
the
ip
and
all
the
stuff
starting
to
do
the
part
of.
If
we
do
a
course,
we
are
going
to
start
filling
the
heart
table
of
this
of
this
this
bridge,
and
we
start
to
do
all
this
part,
is
the
very
simple
creation
part
in
this
case.
Let's
give
a
pot.
This
said
instruction
facilities
when
we
make
a
sketch.
We
are
using
some
this
object
as
a
resource
like
deployment.
A
Well,
the
only
thing
that
happens
is
that
it
repeats
In
this
series
of
steps,
this
from
the
interaction
between
the
elche
and
the
container
and
time,
and
it
begins
to
remain
for
each
of
the
spots
in
that
single
worker,.
This
does
not
begin
to
fill
in
the
information,
that
is,
different
containers
begin
to
remain
in
different
myspaces,
and
they
begin
to
connect
these
species
with
their
own
and
pérez
and
they
solve
their
ips,
and
in
this
way
that
communication
exists
and
everything
then
from
this
part,
all
of
them.
A
A
A
In
simple
words,
and
in
short,
a
service
in
the
part
of
cuber
minds
is
basically
some
balances
that
have
this
with
the
balances
in
layer
4
from
the
network
and
communicates
distributes
that
balance
that
is
loaded
through
Of,
the
different
ones,.
This
pot
in
the
documentation,
in
fact,
in
this
league
I
found
it
quite
interesting,.
A
This
is
a
series
of
the
laboratory
where
he
explains
step
by
step
with
the
components,,
with,
in
particular,
the
part
of
networks
of
cv.
Vernet
is
this
and
I
really
liked
this
diagram,
because
in
this
way
it
distinguishes
well
what
it
is
and
how
to
use
a
7
in
that
case,
for
example,,
a
heat-type
service
can
be
imagined
crystal
as
for
where
an
ip
is
not
required,,
but
a
virtual
kostelic
ip.
A
Finally,
to
access
it,
one
for
putting
the
service
that
is
currently
exposed
through
is
going
to
expose
a
port
assigned
to
each
of
the
walker
mounts
and
the
balance
which
practically
is
to
use
the
capabilities
of
the
cloud
problem
and
this
and
make
it
completely
external
Not
this
service,.
So
if
we
have
to
learn
something
from
this
part,,
they
practically
say
that
they
will
see
minds,,
they
are
going
to
do
the
implementation
part.
A
And
well,:
where
is
the
part
of
this
component
of
a
proxy
located
and
well,?
If
the
proxy
is
recent,
a
service,,
a
container
This
runs
American
to
those
of
the
workers.
Tonight
this
we
will
remember
the
architecture
of
cuber
nets.
We
have
the
part
of
the
control
plane
and
that
of
the
plaine
or
simply
the
controller
and
the
workers.
This
then
in
each
of
the
domains
and
next
workouts
previously
this
exists.
This
this
pot
is
the
container
that
is
running
and
that
is
going
to
be
in
charge
of
doing
this
part
of
the
synchronization.
A
We
are
going
to
receive
the
calls
and
we
are
going
to
create
these
services
for
what
you
see
being
all
the
wiring
we
are
going
to
get
more
into.
We
already
knew
the
previous
steps
in
detail.
What
happens
in
the
work
airlines
when
a
pot
was
created
that
a
wiring
was
made,
but
this
wiring
was
not
especially
for
nearby
equipment
if
it
was
really
the
part
of
Sinai.
A
We
have
several
this
several
spots,
I
scale
our
application
or
region
a
little
pressure
application
with
three
spots
and
to
be
able
to
use
its
different
ips.
But
since
what
we
want
is
to
do
this
part
of
the
load
balancing
and
handle
with
only
one,
what
has
been
the
case
of
the
cloud
drive
service
and
we
are
going
to
handle
this
this
type
good,
because
the
practice
for
much
more
this,
because
there
are
many
topics
but
I,
would
like
to
reduce
nothing
more
and
service
power.
A
well,
first
of
all,,
it
has
already
been
widely
used.
So
it
is
not
a
component
that
we
are
talking
about,.
It
is
in
beta
or
alpha
phase
Currently.
It
has
been
used
and
it
is
very
mature
and
offers
better
stability,
and
you
can
take
advantage
of
and
improve
its
part
of
the
balancing
algorithms.
That
does
not
have
a
little.
There
are
videos
and
it
has
a
lot
of
advantage.
No,
so
why?
Because
well
this
image-
and
it
is
some
analogy
that
I
like
to
compare
here,
ideas
in
my
head.
A
This
is
an
image,
a
concept
that
I
have
saying
that
there
is
activity
and
buses
like
this
young
African,
where
the
packages
arrive
and
depending
on
the
rules
that
exist
in
life
and
bolt,
is
going
to
find
its
holes
his
way,
then
the
more
rules
we
have
active,
the
more
holes,
the
more
enrichment
will
exist
in
those
holes,
so
there
will
be
a
little
more
complex,
not
instead
of
you
10.
We
will
do
later.
This
is
much
friendlier.
It
is
not
much
more.
This
is
more
oriented
type
of
conscious,.
A
Therefore,
the
performance
in
activity
in
activities
is
much
better
than
nothing
criteria,
so
this
is
the
success
that
the
magnet
also
has
this
concept
today
or
mental
image
in
this
room
of
twitter
is
a
little
slower
for
that
part
or
it
can
arrive
to
be
more
complex,
the
execution
well.
But
what
is
haiti?
10?
A
Good
activity
is
simply
a
module
in
el
carmen
that
specializes,
and
this
is
really
was
created
for
which
is
load
balancing
and
this
and,
as
I
mentioned
before,
a
kernel
stimulus
for
which
I
have
to
have
certain
considerations
that
it
is
the
one
that
we
least
wanted
to
use.
In
this
case
from
what
I
read
from
Carmen
2.6
10,
this
is
available,
then,
to
be
able
to
use
it
simply
that
it
is
close
to
our
this
linux
server
with
the
following
instruction
and
from
from
it
we
will
have
all
the
capabilities.
A
All
the
benefits
of
tibias,
very
simple
and
something
very
easy
is
called
to
go
back
with
our
example
that
we
have
once
again
a
single
pod
and
the
instruction
to
create
it.
We
need
a
tool
called
here:
10a
ping,
d
of
the
services,
so
in
this
case,
what
it
is
we
are
going
to
execute.
We
are
going
to
create
a
virtual
ip.
We
do
not
have
the
ip,
which
is
1.2
points
3.4
and
with
port
80,
and
look
here,
I
am
telling
you
well.
This
instruction
starts
some
instructions
simply
to
the
limit
of
the
module.
A
A
This
instruction
here,
I,
am
showing
I,
have
nothing
any
registration
service.
This
instruction,
that
has
been
the
one
that
registers
the
service
and
it's
just
good
to
see.
You
demonstrate
what
is
happening.
Not
here.
I
came
to
underline
what
allows
us
to
handle
different
load,
balancing
algorithms
And.
If
we
are
going
to
see
it
later,
until
now,
we
only
have
an
ip
there
registered
and
with
nothing
about
it.
I.
A
A
Now
we
are
going
to
focus
on
mazarrón
robin
that
effectively
distribute
them
seems
mind,
that
is
to
say,
a
connection
arrives
and
files
arrive,
the
first
being
the
first
server
that
we
have
available
the
next
recent
connection
to
the
second
being
and
when
they
are
finished,
We
count
all
services
that
respond
first,,
so
it
distributes
it.
Evenly.
We.
A
A
Ok,
we
gave
it
sign
up
this,
our
service
we
already
have,
but
it
does
not
offer
anything.
So
what
is
needed
well,
what
we
are
through
nothing
else
from
didier
is
to
tell
him
what
services
enough
he
replied
after
s&p.
No
again,
I
am
drinking
tea
with
droughts
at
10
am
we
are
going
to
create
a
server?
We
are
going
to
say
what
service
we
want
to
add
it
to
and
when
we
create
the
ip
that
is
going
to
answer
to
be
the
mastering
part.
A
A
The
activities
part
and
well,
we
have
certain
statistics
that
are
clean
for
now,
because
we
have
not
done
anything.
We
repeat
all
the
steps
and
our
steps
in
this
post
that
we
had
to
August,
previously,
well,.
We
can
now
access
the
different
spots
through
the
IP
that
we
defined
1234,
and
how
we
handle
a
'round
robin'
algorithm.
A
With
the
first
one
and
up
to
now
everything
looks
very
good
perfect
if
we
handle
the
statistics.
Well,
we
see
the
number
of
packets.
The
number
of
bytes
are
calling
really
good.
There
is
a
part
of
this
communication,
well,
three
tcp
protocols,
so
we
pass
a
larger
number
of
packets
Although.
We
have
only
made
a
single
call,
well,.
Everything
is
perfect,.
So
now
that
this
is
happening,
no,
well,,
it
does
not
happen
that
if
we
make
the
call
from
a
pot
to
the
service,,
it
does
not
answer.
A
A
Known
can
be
the
place
and
it
is
practically
an
interest
that
we
can
use
as
a
wildcard
for
27
types
of
packages,.
We
are
going
to
have
this
interface
and
well.
We
have
to
create
the
cip,
there
are
tibias,
but
we
also
have
to
or
not,
and
we
have
to
assign
the
idea,
not
obviously
that
we
are
going
to
interface.
A
Yes,
in
this
case,
removing
the
desserts
for
simplicity,
simplicity,
as
it
is
being
called.
What
would
it
be
to
put
the
algorithm
What
do
I
have
to
do
for
one?.
It
is
someone
who
does
not
answer
us,.
It
keeps
giving
us
time
out,.
So
there
is
a
problem
that
cannot
be
communicated
to
post
2,,
but
it
is
not
communicated
to
post
1
to
itself,.
Equally,
if
I
did
this
type.
A
as
an
example
of
photo
2
towards
the
dot,
being
by
one
to
be
exactly
the
same,,
not
the
pot,,
everyone
could
communicate
towards
the
x
1,
but
the
background
cannot
communicate
with
itself,.
So
you
have
to
solve
that
and
to
solve
that
there
is
the
part
of
pin.
Then
we
have
to
do
a
series
of
enabling
more
things
in
this
case,
other
modules,
of
which
I
am
first.
Is
this
the
part
of
the
forward?
A
A
Not
then
why,
without
security,
it
is
uninhabited
we
have
to
enable
it
which
allows
us
to
manage
our
server
as
if
it
were
a
router,
then,
and
we
have
to
define
a
series
d
of
rule
but
again
return
to
haiti
'tablets',
and
if
the
good
thing
is
that
the
table
we
have
of
mapping
this
for
this,
it
is
key
that
the
ip
of
the
pot
we
are
going
to
apply
more
grade,
and
that
can
solve
the
situation
a
bit
again.
We
also
have
to
use
the
connection
track.
A
We
are
going
to
visit
that
world
el
carmen
and
this
and
in
the
pri,
in
the
bis
that
sinai
offers
us
when
it
has
to
squeeze
edited
the
same.
That
basically
is
going
to
be
sending
this
now.
Yes,
that
all
the
calls
internally
in
that
big
vast
new
brotherhood
towards
all
this
to
these
devices,
if
the
10,
12
and
32
remain
connected
to
our
listen
to
two
types
of
calls.
A
A
A
This
rules
that
are
going
to
be
added
to
that
and
of
tables
in
each
one
of
the
worker
'notes,.
So
imagine
the
number
of
times
that
each
packet
that
arrives
at
that
worker
mount
is
going
to
travel
100
or
a
thousand
this
truth
to
determine
what
pot
it
is
going
to
arrive
at
la
then.
This
is
going
to
get
a
bit
complete.
A
It's
going
to
be
a
bit
busy
so
to
solve
this
problem
d
to
add
twitters,
because
we
really
need
to
use
equitables
in
this
case,
although
we
have
received
it
a
bit
this
we
use.
What
is
haiti?
Haiti
set
no
x,
haiti
set,
allows
us
to
create
a
group
of
d
and
hyper
assign
them
to
group
them
in
em
in
an
object
in
a
set,
and
in
this
way
nothing
else.
A
What
we
are
going
to
do
is
that
the
rule
that
we
have
of
equitable
we
are
going
to
assign
it
to
that
set
and
the
calls
that
we
are
going
to
we
are
going
to
be
doing
is.
We
are
just
going
to
be
adding
the
flashes
and
after
each
service,
towards
that
haiti
set,
and
in
this
way
well,
we
really
reduce
the
location
that
we
have
in
the
kernel
and
what
is
going
to
be
good
is
going
to
be
from
that
list
of
petersen
is
eternal,
so
old
age
will
reduce
us
a
lot.
A
Well,
we
talked
a
little
about
what
was
happening
now,
yes
than
to
skate
on
four
scenes,
all
that
they
also
have
to
do.
They
have
to
do
that
manual
configuration
if
they
are
doing.
Let's
say
it's
a
few
years
ago
this:
if
they
want
to
connect
all
these
containers,
let's
say
that
an
age
recovers
meters
does
not
wait
for
me
to
see
mind
when
we
have
this
Proxy
component,,
as
I
mentioned.
A
Before,
is
a
component
that
exists
in
the
turbinate
architecture,,
which
really
what
it
does
is
that
it
reflects
these
services
in
each
of
the
whys.
We
have
this
fact
and
internally,
what
is
seen
is
what
we
have
previously,
not
all
this
type
of
calls,
but
that
the
service
makes
is
full
and
through
the
code
that
assigns
and
creates
them.
A
The
virtual
ips
in
haiti
10.
Obviously
much
more
calls
and
validations,
and
one
more
jokes
underline
a
bit
the
part
of
getting
to
the
part
of
the
virtual
man
that
basically
Well,
it
is
a
line
of
code
that
involves
the
implication
of
the
services
and
this,
in
turn,
will
call
other
modules.
We
will
see
later
what
are
other
libraries,?
This
one
is
already
more
low
level,,
but
everything
is
free.
After
this
one.
A
So,
a
much
more
programmatic
way
is
already
handled,.
Many
behind
all
this
and
I
think
that
this
is
for
the
moment.
It
is
a
bit
fast
and
I
hope
it
was
this
utility
I
share.
This
link
in
this
link.
I
have
practically
not
only
put
this
exercise,
but
this
one
and
others
where
he
talked
about
chanel
or
the
container
pub,
because
it
is
my
laboratory
or
the
paste
to
study
and
in
the
code.
A
B
A
To
the
part
of
google,
so
whatever
all
its
public
or
private
powers
as
a
stack
that
delegates
this
this
creation,
if
it
knows
it,
receives
the
call
to
the
api
and
detects
that
it
is
applying
a
balance
and
there
will
be
no
such
calls
in
the
worker
nights.
What
it
will
do
is
create
the
entries
I
will
to
send
the
others
to
asia.
This
balances.
A
B
A
See
in
your
in
you
in
your
cluster,
so
this
is
not
going
to
exist.
All
these
distraction
calls
from
the
balls
elite
and
all
that
kind
of
thing,
because
the
passer
will
handle
it.
So
it
is
not
that
they
are,,
let's
say,
one
or
the
other,
but
rather
complement
each
other,
but
that
I
don't
know
if
it
explains
a
bit,
that
is,,
if
there
are
always
other
things,,
but
the
answer
that
yes,
you
can
use
the
load
of
the
calls
and
the
configuration,.
But
you
in
your
closet
with
this
is
like
that,.
A
No
rather,
this
10
is
the
implementation
of
the
services.
If,
then,
this,
the
concept
of
services
is
the
abstraction
that
you
have
rulers,
then
let's
say
that
it
is
a
logical
representation
like,
for
example,
we
have
that
the
spots
is
a
logical
representation.
If
the
same
were
done
to
it,
they
are
entries
in
the
database
etc,
but
the
implementation
is
already
a
specific
implementation.
We
are
not
in
this
case
for
the
next
three,
because
it
is
by
josep
space
we
put
by
haiti.
A
A
The
disadvantage,
as
we
mentioned
before,
can
be
an
overload
in
which,
in
fact,
the
documentation
says
that
it
is
the
default
and
that
it
is
and
that
it
is
good
because
it
has
been
the
original
initially
implemented.
This
activity,
the
words,
but
what
we
see
that
to
find
servers
or
clusters
of
various
numbers
of
nodes
is
already
an
excessive
load
for
the
ram.
A
So
the
suggestions,
the
recommendations
and
when
you
do,
when
one
or
three
others
which
minds
you
make
sure
that
this
is
created
with
your
proxy
in
mobility
and
10,
if
you
really
use
I,
don't
know
a
minute,
but
with
cain
this
there
is
a
line
that
is
specified
and
that
is
I
love
you
diaz
and
if
you
use
this
city,
then
also
that
part
of
the
specific
configuration
files
I
want
activity.
It
is
not
used
as
default,
because
this
depends
on
the
kernel
module
being
available.
A
A
So
it
is
so
is
the
code
that
I
showed
this
at
the
end
of
the
presentation
is
the
implementation
that
exists
that
is,
either
the
bucket
code
is
shibasaki.
The
part
of
the
link
is
to
discover
meters
as
it
is,
and
we
are
talking
about
the
next
one
in
the
implementation
of
activity.
So
it
really
is
like
this.
We
completely
exaggerate
the
proxy
equipment
component.
A
This
one
the
calls
so
internally,
what
proxy
or
are
they
asia,
se
modules
or
towards
the
apex
of
here,
is
so
I
showed
earlier
what
it
won't
have
to
be
through
the
command
line?
What
proxy
actually
does
is
a
programmatic
way
of
calling
the
same
commands
that
I
currently
call
it
in
a
much
more
efficient
way,.
Why
do
you
interact
with
the
rulers
api,
receive
the
calls,,
translate
them,.