docker
Hub
ctrl+K
Sign inSign up

kubeovn/kube-ovn

Sponsored OSS

By kubeovn

Updated about 8 hours ago

A Kubernetes Network Fabric for Enterprises that is Rich in Functions and Easy in Operations

Image
Networking

1M+

OverviewTags
kube_ovn_logo

中文教程

Kube-OVN integrates the OVN-based Network Virtualization with Kubernetes. It offers an advanced Container Network Fabric for Enterprises with the most functions and the easiest operation.

Community

The Kube-OVN community is waiting for you participation!

  • Follow us at Twitter
  • Chat with us at Slack
  • Other issues please send email to mengxin@alauda.io
  • 微信用户加 liumengxinfly 进入 "Kube-OVN 开源交流群",请注明 Kube-OVN 和个人信息

Features

  • Namespaced Subnets: Each Namespace can have a unique Subnet (backed by a Logical Switch). Pods within the Namespace will have IP addresses allocated from the Subnet. It's also possible for multiple Namespaces to share a Subnet.
  • Subnet Isolation: Can configure a Subnet to deny any traffic from source IP addresses not within the same Subnet. Can whitelist specific IP addresses and IP ranges.
  • Network Policy: Implementing networking.k8s.io/NetworkPolicy API by high performance ovn ACL.
  • Static IP Addresses for Workloads: Allocate random or static IP addresses to workloads.
  • Multi-Cluster Network: Connect different clusters into one L3 network.
  • IPAM for Multi NIC: A cluster-wide IPAM for CNI plugins other than Kube-OVN, such as macvlan/vlan/host-device to take advantage of subnet and static ip allocation functions in Kube-OVN.
  • Dynamic QoS: Configure Pod/Gateway Ingress/Egress traffic rate limits on the fly.
  • Embedded Load Balancers: Replace kube-proxy with the OVN embedded high performance distributed L2 Load Balancer.
  • Distributed Gateways: Every Node can act as a Gateway to provide external network connectivity.
  • Namespaced Gateways: Every Namespace can have a dedicated Gateway for Egress traffic.
  • Direct External Connectivity:Pod IP can be exposed to external network directly.
  • BGP Support: Pod IP can be exposed to external by BGP router protocol.
  • Traffic Mirror: Duplicated container network traffic for monitoring, diagnosing and replay.
  • Hardware Offload: Boost network performance and save CPU resource by offloading OVS flow table to hardware.
  • Vlan Support: Kube-OVN also support underlay Vlan mode network for better performance and throughput.
  • DPDK Support: DPDK application now can run in Pod with OVS-DPDK.
  • IPv6 Support: Kube-OVN supports ipv6-only mode pod network.
  • ARM Support: Kube-OVN can run on x86_64 and arm64 platforms.
  • TroubleShooting Tools: Handy tools to diagnose, trace, monitor and dump container network traffic to help troubleshooting complicate network issues.
  • Prometheus & Grafana Integration: Exposing network quality metrics like pod/node/service/dns connectivity/latency in Prometheus format.

Planned Future Work

  • Policy-based QoS
  • More Metrics and Traffic Graph
  • More Diagnosis and Tracing Tools

Please check Kube-OVN for more information,

Docker Pull Command

docker pull kubeovn/kube-ovn