November 10, 2025 | 1:00 PM - 5:00 PM EST
In Person | The Westin Peachtree Plaza Atlanta, Atlanta, GA
Virtual | Worldwide
CalicoCon 2025
Hybrid Event for the Calico Community
Join the Calico team for an afternoon of deep-dive sessions, hands-on training, and best practices in Kubernetes networking, security, and observability. Attend in person or virtually.
About the Event
CalicoCon is coming to KubeCon + CloudNativeCon North America 2025.
What to Expect:
This year, we’ll dive deep into Calico 3.30 and beyond, explore the power of Calico eBPF, and introduce you to Calico Whisker. You’ll discover how Whisker provides an open-source observability solution for Kubernetes, helping you analyze real-time traffic and proactively manage security. Learn to identify risky connections, implement precise network controls, and secure your workloads without disrupting functionality.
End your day by unwinding at our complimentary happy hour, where you can connect with other Calico users on their Kubernetes journeys and the team behind Calico.
Why Attend?

Security Teams
Learn how to holistically secure your cloud-native applications following today’s best practices

DevOps and SRE Teams
Learn how to include security and observability in your CI/CD pipeline to enable security, observability and troubleshooting

Platform Architects
Learn architecture patterns and best practices to secure and troubleshoot cloud-native applications

Developers
Get tailored advice on implementing container network policies and security-first practices directly from the experts
Agenda
| 1:00-1:15 PM | Introduction & Welcome Address |
| 1:15-2:15 PM | What’s New in Calico v3.30 and Beyond |
| 2:15-3:00 PM | Everything You Need to Know About Calico eBPF |
| 3:00-3:15 PM | Coffee Break |
| 3:15-4:00 PM | Get Up and Running with Calico Ingress Controller |
| 4:00-4:30 PM | Implementing Observability-Driven Network Policies |
| 4:30-4:45 PM | QoS: Precise Traffic Controls for Kubernetes Workloads |
| 4:45-5:00 PM | AMA with Calico Engineers |
| 5:00-7:00 PM | Happy Hour with Calico |
Registration
This event is a co-located event at KubeCon + CloudNativeCon North America 2025. Attendees can register by adding it to their existing registration using the CNCF portal.
If you’re not attending KubeCon + CloudNativeCon North America, you can still participate virtually.
Speakers
Peter Kelly
VP of Engineering, Tigera
As VP of Engineering at Tigera, Peter is responsible for leading all engineering teams and operations. With two decades of software development experience, including leadership roles at NGINX and F5 Networks, he brings deep expertise in control plane technology for open-source proxies. Peter’s expertise is a valuable asset to Tigera and will provide key insights for all CalicoCon attendees.
Ivan Sharamok
Manager, Solutions Architecture, Tigera
As Manager of Solutions Architecture at Tigera, Ivan brings over 15 years of combined experience in application development and network architecture. His journey with container technologies began at Docker, and now he specializes in applying security techniques and best practices to continuously protect cloud-native applications. Ivan will share his insights and expertise to help you secure your own platforms.
Pedro Coutinho
Senior Software Engineer, Tigera
As a Senior Software Engineer at Tigera, Pedro brings over a decade of IT experience. His background includes software development and systems analysis, focusing on the company’s container networking features, as well as Cloud-Native Application Protection Platform (CNAPP). Pedro is a core contributor for cluster network connectivity, security and observability. His unique blend of experience provides a valuable perspective on solving complex cloud challenges. He is excited to engage with fellow practitioners and share his insights at CalicoCon.
Aadhil Majeed
Senior Product Manager, Tigera
As a Senior Software Engineer at Tigera, Pedro brings over a decade of IT experience. His background includes software development and systems analysis, focusing on the company’s container networking features, as well as Cloud-Native Application Protection Platform (CNAPP). Pedro is a core contributor for cluster network connectivity, security and observability. His unique blend of experience provides a valuable perspective on solving complex cloud challenges. He is excited to engage with fellow practitioners and share his insights at CalicoCon.
Reza Ramezanpour
Developer Advocate, Tigera
Peter Kelly
VP of Engineering, Tigera
Shaun Crampton
Distinguished Engineer, Tigera
Lance Robson
Staff Software Engineer, Tigera
Ivan Sharamok
Manager, Solutions Architecture, Tigera
Leon Barron
Senior Solutions Architect, Tigera
Peter Kelly
VP of Engineering, Tigera
As VP of Engineering at Tigera, Peter is responsible for leading all engineering teams and operations. With two decades of software development experience, including leadership roles at NGINX and F5 Networks, he brings deep expertise in control plane technology for open-source proxies. Peter’s expertise is a valuable asset to Tigera and will provide key insights for all CalicoCon attendees.
Ivan Sharamok
Manager, Solutions Architecture, Tigera
As Manager of Solutions Architecture at Tigera, Ivan brings over 15 years of combined experience in application development and network architecture. His journey with container technologies began at Docker, and now he specializes in applying security techniques and best practices to continuously protect cloud-native applications. Ivan will share his insights and expertise to help you secure your own platforms.
Pedro Coutinho
Senior Software Engineer, Tigera
As a Senior Software Engineer at Tigera, Pedro brings over a decade of IT experience. His background includes software development and systems analysis, focusing on the company’s container networking features, as well as Cloud-Native Application Protection Platform (CNAPP). Pedro is a core contributor for cluster network connectivity, security and observability. His unique blend of experience provides a valuable perspective on solving complex cloud challenges. He is excited to engage with fellow practitioners and share his insights at CalicoCon.
Aadhil Majeed
Senior Product Manager, Tigera
As a Senior Software Engineer at Tigera, Pedro brings over a decade of IT experience. His background includes software development and systems analysis, focusing on the company’s container networking features, as well as Cloud-Native Application Protection Platform (CNAPP). Pedro is a core contributor for cluster network connectivity, security and observability. His unique blend of experience provides a valuable perspective on solving complex cloud challenges. He is excited to engage with fellow practitioners and share his insights at CalicoCon.
Reza Ramezanpour
Developer Advocate, Tigera
Jeremy Guerrand
Solutions Architect, Tigera
Reza Ramezanpour
Developer Advocate, Tigera
Choose your Experience
Whether you are attending in person or virtually, select the best way for you to experience the fun!

Why Attend in Person:
- You're already here for KubeCon + CloudNativeCon, join us for a fun and educational event!
- Connect with your colleagues and peers
- Meet the team behind Calico
- Exclusive CalicoCon swag
- Networking opportunities
- Enjoy a Happy Hour with the Calico community – food and drinks included!

Why Attend Virtually:
- Join from anywhere - no excuses!
- Watch keynotes and select sessions
- No travel required
- Stay current with key announcements and updates
Venue Information
We’re excited to host you at The Westin Peachtree Plaza Atlanta, just a short trip from the main KubeCon + CloudNativeCon venue.
- Location: The Westin Peachtree Plaza Atlanta
- Address: 210 Peachtree St NW, Atlanta, GA 30303
- Conference Room: Chastain E
Registration
Get Started with Kubernetes & Calico eBPF data plane
This event is designed for platform engineers, developers, and system administrators who are new to Kubernetes or cloud networking and are evaluating Standard Linux, eBPF, Windows HNS dataplanes.
Attendees will learn about Kubernetes basics, container networking principles, and how to implement Calico to secure and manage network traffic effectively.
The session will also cover practical examples, best practices, and common challenges to help you kickstart your journey towards cloud-native excellence for on-premises and public cloud environments.
Master Container Networking & Security with Calico eBPF data plane (Includes Latest Kubernetes Admin Network Policy)
Hands-on workshop to learn about how to implement Adminnetworkpolicy updates of Kubernetes networking and security using Calico. You will learn how to design, configure, deploy, and secure your Kubernetes network for single and multi-cluster environment across Standard Linux, eBPF, and Windows dataplanes. With this experience, you will be able to architect and implement a scalable and secure Kubernetes-based SaaS or CaaS platform.
The workshop will cover the following topics:
- Kubernetes deployment and networking
- Networking Options across Linux, eBPF, Windows dataplanes
- Secure workload access and strengthen your cluster’s security posture
- Implement network policies
- Implement Network admin policies
- Implement cluster-wide encryption with WireGuard
- Observe and troubleshoot workload traffic and network policies
What you’ll need on the day: A device with a modern web browser.
What is Admin Network Policy, Policy Tiers and why do you need it
Are you ready for the new changes that are coming to Kubernetes? Admin network policy and baseline admin network policy are two anticipated policy extensions that add cluster wide, proirotization, action and grouping to the Kubernetes engine.
This session is tailored to get you up and running with the Admin Network Policy changes and how Calico implements them in your Kubernetes environment. On top of that we will explore Tiers, a newly added feature to Calico open source that allows you to establish security without compremise.
Mastering Kubernetes Security: Top 3 Network Policy Patterns
Explore how to enhance your Kubernetes cluster’s security posture by implementing the top three network policy patterns: Deny-list policy, namespace isolation, and workload isolation.
In this session, we will cover how to author, stage, preview and enforce:
- Deny-list Policy: How to block unwanted traffic explicitly within your cluster.
- Namespace Isolation: Techniques to keep workloads in different namespaces securely separated unless explicitly allowed.
- Workload Isolation: Strategies to restrict traffic between workloads based on specific security requirements.
This session is ideal for platform engineers, DevOps, and cloud engineers to have a clear understanding of these essential network policy patterns and how to apply them effectively in their Kubernetes environments.
Up and running with Calico BGP
Calico is known for its robust networking capabilities, with Border Gateway Protocol (BGP) at the core of its network architecture. BGP empowers Calico to extend Kubernetes beyond the limitations of a single cluster by enabling seamless networking between BGP-capable devices and Kubernetes clusters. This provides an elegant solution for connecting Kubernetes clusters to any on-premises or cloud-based network.
In this in-depth session, we will explore the intricacies of Calico BGP, starting with the fundamentals of peering Calico BGP with a single direct router. As we progress, we will delve into advanced topics such as multihop routers and crafting effective BGP filters. Attendees will gain hands-on knowledge and see real-world examples of how to pair Calico with industry-standard routers, including Cisco, Mikrotik, and Fortinet.
This event is ideal for network engineers, Kubernetes administrators, and IT professionals seeking to enhance their network infrastructure by leveraging the full potential of Calico BGP. Whether you’re looking to connect Kubernetes clusters across diverse environments or optimize your existing network architecture, this session will equip you with the practical skills and insights needed to succeed.
Lorem ipsum dolor sit amet, consectetur adipiscing elit. Ut elit tellus, luctus nec ullamcorper mattis, pulvinar dapibus leo.