Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Document to describe networking requirements for vendors replacing openshift-sdn #12981

Merged
merged 1 commit into from
Feb 22, 2017
Merged

Document to describe networking requirements for vendors replacing openshift-sdn #12981

merged 1 commit into from
Feb 22, 2017

Conversation

rajatchopra
Copy link
Contributor

pweil-
pweil- suggested changes Feb 16, 2017
View reviewed changes
docs/openshift_networking_requirements.md Outdated
@@ -0,0 +1,35 @@
# OpenShift networking requirements
Guidelines for a third party network plugin for OpenShift
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

missing period

docs/openshift_networking_requirements.md Outdated

## CNI is the recommended way

Any external networking solution can be used to plumb networking for openshift as long as it follows the 'CNI' spec. Then, openshift needs to be launched with 'networkPluginName: "cni"' in the master/node config yaml files.
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

example master config snippet would be nice

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Example has been added below

docs/openshift_networking_requirements.md Outdated

Any external networking solution can be used to plumb networking for openshift as long as it follows the 'CNI' spec. Then, openshift needs to be launched with 'networkPluginName: "cni"' in the master/node config yaml files.

When done through ansible, provide sdn_network_plugin_name=cni as the option while installing openshift. Be aware that openshift ansible installation allows a firewall passthrough for the VxLAN port (4789), so if a plugin needs other ports (for management/control/data) to be open, then the installer needs to be changed suitably.
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

should mention that this goes in the inventory file. Does it need to be in a specific group? Example might also be helpful here.

docs/openshift_networking_requirements.md Outdated

2. Certain services in the cluster will be run as infrastructure services. e.g. Load balancer, registry, DNS server(skydns). The plugin should allow for a 'global' tenant which is-accessible-by/can-access all pods of the cluster. For example, a load balancer can run in two modes - private and global. The global load balancer should have access to all tenants/namespaces of the cluster. A private load balancer is one that is launched as a pod by a particular namespace, and this should obey tenant isolation rules.

3. *Access to all pods from the host - particularly important if kube-proxy is used by the SDN solution to support kubernetes services. Please note that iptables based kube-proxy will be enabled by default in openshift. This will have to be overridden specially if the plugin wants a different behaviour.
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

how to override?

@rajatchopra rajatchopra force-pushed the netreqs branch 2 times, most recently from fa29987 to 8f1ad53 Compare February 22, 2017 01:03
@rajatchopra
Copy link
Contributor Author

@pweil- Fixed according to the feedback. Thanks for the review.

pweil-
pweil- approved these changes Feb 22, 2017
View reviewed changes
Copy link

@pweil- pweil- left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks @rajatchopra changes LGTM

danmcp
danmcp reviewed Feb 22, 2017
View reviewed changes
docs/openshift_networking_requirements.md Outdated

## CNI is the recommended way

Any external networking solution can be used to plumb networking for openshift as long as it follows the 'CNI' spec. Then, openshift needs to be launched with 'networkPluginName: "cni"' in the master/node config yaml files.
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Should use OpenShift consistently (instead of openshift).

@danmcp danmcp merged commit 21998a2 into openshift:master Feb 22, 2017
@rajatchopra rajatchopra deleted the netreqs branch February 22, 2017 20:18
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@danmcp danmcp danmcp left review comments

@pweil- pweil- pweil- approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@rajatchopra @danmcp @pweil-