Difficulty: Beginner
Estimated Time: 10 minutes

Configure a zero-trust network with Consul service mesh intentions on Kubernetes

In this hands-on lab, you will configure zero-trust networking with Consul service intentions on Kubernetes.

The lab uses Minikube to deploy the cluster but the commands can be applied to any Kubernetes flavor.

In this hands-on lab you will:

  • Start a remote interactive terminal on a running Consul container
  • Configure a default-deny intention for your service mesh
  • Verify the intention from the Consul web UI
  • Vefify the intention from the command line
  • Configure an allow intention for your frontend -> backend services
  • Verify the intention from the frontend UI
  • Verify the intention from the Consul web UI

If you are already familiar with the basics of Consul, understand Consul service mesh provides a reference guide for the Consul service mesh based scenarios.

Review

Congratulations! You have now successfully configured a zero-trust network using Consul intentions.

Specifically you:

  • Started a remote interactive terminal on a running Consul container
  • Configured a default-deny intention for your service mesh
  • Verified the intention from the Consul web UI
  • Vefified the intention from the command line
  • Configured an allow intention for your frontend -> backend services
  • Verified the intention from the frontend UI
  • Verified the intention from the Consul web UI

Next Steps

To learn more about Consul service mesh, Understand Consul Service Mesh provides a reference guide for the Consul service mesh based labs.

Configure a zero-trust network with Consul service mesh intentions on Kubernetes

Step 1 of 4

Provisioning Lab Infrastructure

There are a few components that need to be added to the environment; we are adding them now. Wait for the complete message and then move to the next step.

Example Output

- Installing Helm x.y.x
- Starting Kubernetes...this might take up to 5 minutes.
- Installing Consul service mesh.
- Waiting for Consul pod to complete configuration.
- Adding port forward for Consul UI
- Deploying api backend
- Deploying web backend
- Waiting for deployment to complete
- Adding port forward for Web UI

and concluding with

- Complete! Move on to the next step.

Once this message appears, you are ready to continue.

This tab will not be visible to users and provides only information to help authors when creating content.

Creating Katacoda Scenarios

Thanks for creating Katacoda scenarios. This tab is designed to help you as an author have quick access the information you need when creating scenarios.

Here are some useful links to get you started.

Running Katacoda Workshops

If you are planning to use Katacoda for workshops, please contact [email protected] to arrange capacity.

Debugging Scenarios

Below is the response from any background scripts run or files uploaded. This stream can aid debugging scenarios.

If you still need assistance, please contact [email protected]