https://rancher.com/ logo
Title
c

chilly-breakfast-69670

04/21/2023, 5:34 AM
Hi folks! 👋 I just recently stumbled upon NeuVector, and I think it could replace our currently used tools Kyverno and Falco. Falco can work with different drivers such as eBPF or the kernel module. Does use eBPF or a kernel module? Or how does it get its container insights? Many thanks!
s

silly-airline-38945

04/21/2023, 6:19 PM
Hi, cannot answer for the tech in Neuvector, but when it comes to admission controllers tools like kyverno og kubewarden has a bigger featureset. Depending in your milage, Neuvector might be sufficient enough, through.
👍 1
g

glamorous-knife-8697

04/22/2023, 2:29 PM
It uses some pretty smart tech that's mostly part of the Enforcer pods. NeuVector does not need to rely on eBPF or other kernel shims.
It can work with pretty much any CNI, which is handy when you want to employ security policies across heterogeneous kubernetes clusters.
Some of the nitty-gritty can be found in the patents.
Highly recommend attending a rodeo for some free and fun training. 🙂
c

chilly-breakfast-69670

04/22/2023, 2:48 PM
Thanks folks! Signed-up for a rodeo next Tuesday 👍 (kyverno is great, but the ‘one solution for k8s security’ approach of neuvector appeals to me)
🙌 1