public-cloud-roadmap
public-cloud-roadmap copied to clipboard
ovh
Managed add-ons (Backup, UI, security)
We are currently exploring options for the most demanded addons that we could offer as managed option of our Managed Kubernetes services.
Do note hesitate to share with us the onesyou would see the most interesting .
Current options we are looking at :
- Backup solution (Velero or stash or other)
- UI (Kubernetes Dasboard, Octant or other)
- Security coach (Falco or other)
Notes :
- we are currently documenting official support by Trilio for backup and DRP (documentation to be published in the next few weeks)
- a dedicated issue has been opensed regarding serverless https://github.com/ovh/public-cloud-roadmap/issues/90
Hello,
We need Backup solution for K8S cluster (volumes, resources) and for disaster recovery plan, restore all K8S cluster resources on other K8S cluster in OVH CLOUD or in other cloud provider if necessary (OVH FULLY DOWN).
It's possible to have the link of the trillio documentation when it will be published ?
Thanks,
Hello @Grounz ! The documentation is available here : https://docs.ovh.com/gb/en/kubernetes/backup-and-restore-cluster-namespace-and-applications-with-trilio/ . Note that the limitation around volumes snaphshot is not one anymore on Stein region (documentation will be updated soon) : https://github.com/ovh/public-cloud-roadmap/issues/77
Hello,
in the context of security and encryption, we need a new StorageClass for PVCs that allows native encryption of Data at Rest. This is offered by Amazon EKS and Google GKE.
Currently, we would have to resort to external solutions like portworx or vaultproject. This increases complexity and introduces new error possibilities into the system.
Currently, the lack of an encryption of PVC is a possible stop for certain customer projects.
Hi @JohannesHeld and thanks for your suggestion. I understand the need and will discuss with the product and storage teams how we could imagine proposing this in future CSI/storage classess. However this looks more like another dedicated issue/feature proposal than this one. I will create the issue as soon as I have elements.
We are currently exploring options for the most demanded addons that we could offer as managed option of our Managed Kubernetes services.
Do note hesitate to share with us the onesyou would see the most interesting .
Current options we are looking at :
- Backup solution (Velero or stash or other)
- UI (Kubernetes Dasboard, Octant or other)
- Security coach (Falco or other)
We are interested by the service mesh feature when creating MKS
We are also interested by having better dataplane like eBPF/Cilium as feature in networking
We also expect to be able to select key configured in OVH KMS (Generated key / Imported Key / External Key) to handle secrets encryption on MKS
Hi @JohannesHeld and thanks for your suggestion. I understand the need and will discuss with the product and storage teams how we could imagine proposing this in future CSI/storage classess. However this looks more like another dedicated issue/feature proposal than this one. I will create the issue as soon as I have elements.
Hi @mhurtrel, do you have any updates on that? Encrypted storage classes are very important - as without them, nearly no customer will want to take the joint product of OVHcloud, Couchbase and PRODATO.
Hi @JohannesHeld We discussed this with my block storage colleague @JacquesMrz who plans to offer it late calendar year. We will integrate it to managed Kubernetes early 2023 if this ETA is respected on storage/compute side.