Operations

Post-installation tasks for managing Calico Cloud.

Manage clusters

Manage Calico Cloud connected clusters from the web console by adding clusters, removing managed clusters, and configuring cluster-wide alerts.

Uninstall Calico Cloud from a cluster

Disconnect a cluster from Calico Cloud with the migration script that uninstalls SaaS components and reverts the cluster to open-source Project Calico.

Calico Cloud Pro usage and billing

Reference for finding Calico Cloud Pro usage and billing metrics, calculated as vCPU hours across all connected clusters each month.

Component logs

Reference for locating and collecting Calico Cloud component logs including calico/node, Felix, Typha, and observability agents on connected clusters.

Secure component communications

Secure Calico Cloud Prometheus endpoints

Restrict access to Calico Cloud Prometheus metric endpoints on a connected cluster with network policy so only authorized scrapers can read component telemetry.

Secure BGP sessions

Configure BGP session passwords on Calico Cloud BGP peers on a connected cluster to block attackers from injecting false routing information.

Monitoring

Prometheus support

Reference for Prometheus support in Calico Cloud connected clusters covering the bundled operator-managed install and bring-your-own Prometheus deployment options.

Recommended Prometheus metrics

Recommended Prometheus metrics for Calico Cloud Typha, Felix, and policy components on connected clusters, covering the signals most critical to cluster health.

Bring your own Prometheus

Scrape Calico Cloud component metrics from an existing bring-your-own Prometheus deployment instead of the bundled operator-managed Prometheus on connected clusters.

Configure Prometheus

Configure Calico Cloud Prometheus rules for denied-packet alerts and persistent storage on connected clusters by editing PrometheusRule and StorageClass resources.

Configure Alertmanager

Configure Alertmanager in a Calico Cloud connected cluster to route Prometheus alerts to operators with deduplication, grouping, silencing, and inhibition rules.

BGP metrics

Monitor BGP peering and route exchange in Calico Cloud connected clusters by defining Prometheus rules and thresholds for peer health and route counts.

Policy metrics

Monitor the runtime effect of policies on Calico Cloud connected clusters by defining Prometheus rules and thresholds that fire alerts on policy hits.

Fluentd metrics

Track Calico Cloud Fluentd metrics in Prometheus to alert on flow, DNS, and audit log collection disruptions on connected clusters.

eBPF

eBPF use cases

Guidance on when the Calico Cloud eBPF data plane on a connected cluster fits a workload compared to the standard iptables data plane, with trade-offs.

Enable eBPF on an existing cluster

Switch a Calico Cloud connected cluster to the eBPF data plane on an existing installation as an alternative to the iptables data plane.

Troubleshoot eBPF mode

Troubleshooting guide for the Calico Cloud eBPF data plane on a connected cluster covering verification logs, service connectivity, BPF map inspection, and failure modes.