Why, What, and How?
Why
Below is the layout of a NVIDIA 4070 Super connected to a kubernetes node that is virtualized on proxmox. The gpu is connected via thunderbolt and set on passthrough mode so it can be utilized by the virtualized machine mlops-worker-00. We are already using dcgm-exporter but it does not give us the metrics we need to build a thorough visualization that portrays the understanding of this setup current state in real time.
βββββββββββββββββββββββ ββββββββββββββββββββββββββββββ β Proxmox Host β β Kubernetes Node (Talos) β β βββββββββββββββββ β β ββββββββββββββββββββββββ β β β eBPF Agent ββββΌββ bridge ββΌββΆβ DaemonSet: eBPF β β β β (systemd β β vmbr0 β β gpu + net probes β β β β container) β β β ββββββββββββββββββββββββ β β βββββββββββββββββ β β ββββββββββββββββ β β β β β Prometheus β β β β β β node_exporterβ β β β β ββββββββββββββββ β β β β β² β β β Thunderboltβ Scrape β β β β 3/4 β β β β β β βββββββ΄ββββββ β β β β β Grafana β β β β β ββββββββββββββ β βββββββββββββββββββββββ ββββββββββββββββββββββββββββββ
What
What is Ebpf? It is a continuation of BPF (The Berkeley Packet Filter) which was first introduced by Steven McCanne and Van Jacobson in the Lawrence Berkeley National Laboratory
in 1993. It was written to intercept network packets and run them through a series of filters to ultimately decide wether to accept or reject the packet.
Fast forward 20 years, this tool has been extended and now applied to the linux kernel as well. The ability to attach runtime middleware into the linux kernel provides many different possibilities in the world of observability and security.
The picture above is a great representation of its capabilities and how it can be used to access different parts of the OSI Model by listening to the kernel of a host machine.
How?
...