Chapter 1: Introduction

[Note] Note: This document is also available in other formats

A PDF version of this document along with all current and older documentation in PDF format can be found at https://my.clavister.com.

It is also available as a single HTML page.

What the container version of cOS Stream provides on a conceptual level is a high-performance containerized firewall that can be managed by the Kubernetes framework. In a typical scenario it leverages SR-IOV interfaces for increased throughput and to be able to handle large volumes of user data, while using the default cluster network for system management. cOS Stream can replace traditional firewalls, with the advantage of fitting in the Kubernetes echo system, and by using resource pools, the number of firewalls can be scaled up or down depending on cluster demands.

Though the firewall runs in a container it is different from a regular micro service in several ways. Some important aspects to note are:

Container Deployment Example

Figure 1.1. Container Deployment Example

The software package contains both the container image needed to run the system, an example of the image name:

clavister-cos-stream-4.00.01.34-cnf-x64-generic.tar.gz

The package also contains an archive with some examples/templates of the files needed to deploy it into kubernetes, an example of the image name:

clavister-cos-stream-4.00.01.34-cnf-x64-generic-deploy.tar.gz