What is Advanced Container Networking Services?

Advanced Container Networking Services (ACNS) is a suite of services built to significantly enhance the operational capabilities of your Azure Kubernetes Service (AKS) clusters. The suite is comprehensive and is designed to address the multifaceted and intricate needs of modern containerized applications. With capabilities tailored for observability, security, and compliance, customers can unlock a new approach to managing container networking.

With Advanced Container Networking Services, the focus is on delivering a seamless and integrated experience that empowers you to maintain robust security postures, ensure comprehensive compliance and gain deep insights into your network traffic and application performance. This ensures that your containerized applications are not only secure and compliant but also meet or exceed your performance and reliability goals, allowing you to confidently manage and scale your infrastructure.

What is included in Advanced Container Networking Services?

Advanced Container Networking Services contains features split into two pillars:

• Observability: The inaugural feature of the Advanced Container Networking Services suite bringing the power of Hubble’s control plane to both Cilium and non-Cilium Linux data planes. These features aim to provide visibility into networking and performance.

• Security: For clusters using Azure CNI Powered by Cilium, network policies include fully qualified domain name (FQDN) filtering for tackling the complexities of maintaining configuration.

Advanced Network Observability

Advanced Network Observability equips you with next-level monitoring and diagnostics tools, providing unparalleled visibility into your containerized workloads. It unlocks Hubble metrics, Hubble’s command line interface (CLI) and the Hubble user interface (UI) on your AKS clusters providing deep, actionable insights into your containerized workloads. It allows you to precisely detect and determine the root causes of network-related issues in AKS through its next-level monitoring and diagnostics tools. These features ensure that your containerized applications are secure and compliant in order to empower you to confidently manage your infrastructure.

For more information about Advanced Network Observability, see What is Advanced Network Observability?.

Security

Security features within ACNS enable greater control over network security policies for ease of use when implementing across clusters. Clusters using Azure CNI Powered by Cilium have access to DNS-based policies. The ease of use compared to IP-based policies allows restricting egress access to external services using domain names. Configuration management becomes simplified by using FQDN rather than dynamically changing IPs.

Pricing

Important

Advanced Container Networking Services will be a paid offering. For more information about pricing, see Advanced Container Networking Services - Pricing

Next steps

• For more information about Azure Kubernetes Service (AKS), see What is Azure Kubernetes Service (AKS)?.

• For more information about Advanced Network Observability, see What is Advanced Network Observability?.

• For more information on security in Advanced Container Network Services, see What security features are available on Advanced Network Container Services?