Service Operator
With every object and agent decoupled we need a flexible and scalable agent which connects resources together and will reconnect, should something die and a replacement is spawned. A service is an operator which listens to the endpoint operator to provide a persistent IP for Pods. Pods have ephemeral IP addresses chosen from a pool.
Then the service operator sends messages via the kube-apiserver which forwards settings to kube-proxy on every node, as well as the network plugin such as calico-kube-controllers.
A service also handles access policies for inbound requests, useful for resource control, as well as for security.
Connect Pods together
Expose Pods to Internet
Decouple settings
Define Pod access policy.
Last updated