Skip to content
/ karto Public

A simple static analysis tool to explore a Kubernetes cluster: observe your cluster state in real time, diagnosticate network policies, and more!

License

MIT license
46 stars 5 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

Zenika/karto

BranchesTags

Repository files navigation

demo

Karto

A simple static analysis tool to explore a Kubernetes cluster.

Latest release Docker pulls GitHub Downloads Build Status

Explore you cluster interactively!

deployment-demo

Observe your cluster change in real time!

deployment-demo

Diagnosticate network policies

network-policy-demo

Main features

The left part of the screen contains the controls for the main view:

  • View: choose your view
    • Workloads: deployments, controllers, pods, services, ingresses... and how they interact with each other
    • Network policies: network routes allowed between pods, based on network policy declarations
    • Health: health information about the pods
  • Filters: filter the items to display
    • by pod namespace
    • by pod labels
    • by pod name
    • [Network policies view only] Include ingress neighbors: also display pods that can reach those in the current selection
    • [Network policies view only] Include egress neighbors: also display pods that can be reached by those in the current selection
  • Display options: customize how items are displayed
    • Auto-refresh: automatically refresh the view every 2 seconds
    • Auto-zoom: automatically resize the view to fit all the elements to display
    • Show namespace prefix: add the namespace to the name of the displayed items
    • Always display large datasets: try to render the data even if the number of item is high (may slow down your browser)
    • [Network policies view only] Highlight non isolated pods (ingress): color pods with no ingress network policy
    • [Network policies view only] Highlight non isolated pods (egress): color pods with no egress network policy
    • [Health view only] Highlight pods with container not running: color pods with at least one container not running
    • [Health view only] Highlight pods with container not ready: color pods with at least one container not ready
    • [Health view only] Highlight pods with container restarted: color pods with at least one container which restarted

The main view shows the graph or list of items, depending on the selected view, filters and display options:

  • Zoom in and out by scrolling
  • Drag and drop graph elements to draw the perfect map of your cluster
  • Hover over any graph element to display details: name, namespace, labels, isolation (ingress/egress)... and more!

In the top left part of the screen you will find action buttons to:

  • Export the current graph as PNG to use it in slides or share it
  • Go fullscreen and use Karto as an office (or situation room) dashboard!

Installation

There are two ways to install and run Karto:

  • To deploy it inside the Kubernetes cluster to analyze, proceed to the Run inside a clustersection.
  • To run it on any machine outside the Kubernetes cluster to analyze, refer to the Run outside a clustersection.

Run inside a cluster

Deployment

Simply apply the provided descriptor:

kubectl apply -f deploy/k8s.yml

This will:

  • create akartonamespace
  • create akartoservice account with a role allowing to watch the resources displayed by Karto (namespaces, pods, network policies, services, deployments...)
  • deploy an instance of the application in this namespace with this service account

Exposition

Once deployed, the application must be exposed. For a quick try, useport-forward:

kubectl -n karto port-forward<pod name>8000:8000

The will exposed the app on your local machine onlocalhost:8000.

For a long-term solution, investigate the use of aLoadBalancer serviceor anIngress.

Remember to always secure the access to the application as it obviously displays sensitive data about your cluster.

Cleanup

Delete everything using the same descriptor:

kubectl delete -f deploy/k8s.yml

Run outside a cluster

For this to work, a localkubeconfigfile with existing connection information to the target cluster must be present on the machine (if you already usekubectllocally, you are good to go!).

Simply download the Karto binary from thereleases pageand run it!

Development

Prerequisites

The following tools must be available locally:

  • Go(tested with Go 1.18)
  • NodeJS(tested with NodeJS 16)

Run the frontend in dev mode

In thefrontdirectory, execute:

yarn start

This will expose the app in dev mode onlocalhost:3000with a proxy tolocalhost:8000for the API calls.

Run the backend locally

In thebackdirectory, execute:

go build karto
./karto

Test suites

To run the entire backend test suite, execute in thebackdirectory:

gotest./...

Compile the go binary from source

In production mode, the frontend is packaged in the go binary usingembed.In this configuration, the frontend is served on the/route and the API on the/apiroute.

To compile the Karto binary from source, first compile the frontend source code. In thefrontdirectory, execute:

yarn build

This will generate abuilddirectory infront.

Then, make a copy in a directory visible by the backend module:

cp -R front/build/*back/exposition/frontend

Finally, compile the go binary in thebackdirectory:

go build karto

About

A simple static analysis tool to explore a Kubernetes cluster: observe your cluster state in real time, diagnosticate network policies, and more!

Topics

kubernetes golang kubernetes-service d3js kubernetes-deployment

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

46 stars

Watchers

11 watching

Forks

5 forks
Report repository

Releases 10

v1.8.0 - Runtime and framework upgrades! Latest
Jun 6, 2022
+ 9 releases

Contributors 2

Languages