-
mizu
Discontinued The API traffic viewer for Kubernetes providing deep visibility into all API traffic and payloads going in, out and across containers and pods inside a Kubernetes cluster. Think TCPDump and Wireshark re-invented for Kubernetes [Moved to: https://github.com/kubeshark/kubeshark]
-
basenine
Schema-free, document-oriented streaming database that optimized for monitoring network traffic in real-time
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
Aside from these Kubernetes permissions, it requires NET_RAW, NET_ADMIN, SYS_ADMIN, SYS_PTRACE, DAC_OVERRIDE and SYS_RESOURCE Linux capabilities according to the configuration. (check --service-mesh and --tls flags)
There is a central pod named API server which serves as a hub for all the dissected TCP streams. The API server then saves all the records into Basenine database server. Through Basenine database server, the filtering is provided.