Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Raw capture #2

Closed
Eriner opened this issue May 24, 2020 · 1 comment
Closed

Raw capture #2

Eriner opened this issue May 24, 2020 · 1 comment
Assignees
@Eriner
Labels
feature New feature or request

Comments

@Eriner
Copy link
Contributor

Eriner commented May 24, 2020
edited
Loading

Feature Description

TCP/UDP capture to pcap.

Potential Solutions

Correct implementation non-trivial, as it involves traffic routing management,
potentially modifying the security context to allow capture, and exporting data
to the client.

  • Data export implementation still undecided, options under consideration:
    • tcpdump + ( FF Send || S3 || PVC || kubectl-tap client stream )
    • webshark interactive interface (stale project)

Context

There's already a kubectl plugin
for this, but the implementation by uploading binaries into running Pods is not ideal:

ksniff use kubectl to upload a statically compiled tcpdump binary to your pod
and redirecting it's output to your local Wireshark for smooth network debugging
experience.

That's pretty gross. Because you share the network namespace, it's much cleaner to just run the tap as a sidecar. I'd bet ksniff has some fun process-management code that I wouldn't want to write.
@Eriner Eriner added the feature New feature or request label May 24, 2020
@Eriner Eriner self-assigned this May 24, 2020
@Eriner Eriner mentioned this issue May 24, 2020
Open
@Eriner Eriner mentioned this issue Jul 22, 2020
Open
@Eriner
Copy link
Contributor Author

Eriner commented Jul 22, 2020

Closed in favor of #7

@Eriner Eriner closed this as completed Jul 22, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@Eriner Eriner

Labels
feature New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@Eriner