Difficulty: Intermediate
Estimated Time: 15 minutes

In this hands-on lab, you will deploy and secure a Consul service mesh running in Kubernetes. This hands-on lab is designed to introduce you to the four core components of Consul service mesh security, and how they can be configured using the Consul Helm chart.

The four core components of Consul service mesh security are:

This hands-on lab will guide you through enabling all four using the Consul Helm chart and the Consul CLI.

Specifically, you will:

  • Install Consul service mesh in a Kubernetes cluster
  • Verify that gossip traffic occurs in clear text
  • Verify that RPC traffic occurs in clear text and ACLs are not enabled
  • Enable gossip encryption, TLS, and ACLs
  • Set TLS configuration
  • Retrieve and set an ACL token
  • Verify that network traffic is now encrypted
  • Secure inter-service traffic using Consul intentions

In this hands-on lab you learned how to secure a Consul service mesh running in Kubernetes. This hands-on lab introduced you to the four core components of Consul service mesh security, and how they can be configured using the Consul Helm chart.

The four core components of Consul service mesh security are:

Specifically you:

  • Installed Consul service mesh in a Kubernetes cluster
  • Verified that gossip traffic occurs in clear text
  • Verified that RPC traffic occurs in clear text and ACLs are not enabled
  • Enabled gossip encryption, TLS, and ACLs
  • Set necessary TLS configuration
  • Retrieved and set an ACL token
  • Verified that ACL tokens were now required
  • Secured inter-service traffic using Consul intentions

For more guidance on how to use Consul visit us on the HashiCorp Learn Platform.

Secure Consul on Kubernetes

Step 1 of 9

Provisioning Lab Infrastructure

There are a few components that need to be added to the environment; we are adding them now. Wait for the complete message and then move to the next step.

This may take a few minutes.

Example Output

- Installing Consul
- Installing kubectl
- Installing kind (Kubernetes in Docker)
- Installing Helm 3

and concluding with

- Complete! Move on to the next step.

Once this message appears, you are ready to continue.