mirrors/kube-router
1
0
Fork 0
mirror of https://github.com/cloudnativelabs/kube-router.git synced 2025-10-11 09:51:04 +02:00
Code Issues Packages Projects Releases Wiki Activity
443 Commits 23 Branches 101 Tags
Commit Graph

443 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Murali Reddy
d3356513e3 use kube-router as kube-proxy replacement 
Fixes #118
 2017-08-11 15:36:46 +05:30
Murali Reddy
79a176ac10 Update kubeadm.md 2017-08-11 00:55:05 +05:30
Bryan Zubrod
c81bfbb616 Enable pod egress masquerading by default (#111) 
* Enable pod egress masquerading by default
- Adds flag "--enable-pod-egress" (default: true)
- Removes previously created iptables rule if option is changed to false
* Use an ipset to match Pod egress traffic to be masqueraded
* Set --cluster-cidr as depreciated flag
If set to anything, normal dynamic Pod egress masquerading is turned on.
* Use Replace else Add logic for updating export policy
Fixes errors logged due to existing statement in poliy.
 2017-08-10 11:50:06 -05:00
Murali Reddy
0a8b7e7fd3 Merge pull request #117 from cloudnativelabs/115-kubeadm-rbac 
kubeadm RBAC fixes and cluster setup with kubeadm instructions
 2017-08-10 18:17:50 +05:30
Murali Reddy
1786a5ea32 kubeadm RBAC fixes and cluster steup with kubeadm instructions 
Fixes #115
 2017-08-10 18:11:31 +05:30
bzub
e5f24c201d vagrant: Fix invalid shell function call 2017-08-10 01:55:40 -05:00
Bryan Zubrod
f6b33a0370 Support updating kube-router in a local VM cluster (#116) 
* gofmt
* docs: Remove manual AWS config reference. It's automatic now.
* Support updating kube-router in a running local VM cluster
- "make vagrant-image-update" target added
- Documentation added and small reorganization
 2017-08-09 23:03:49 -05:00
Murali Reddy
d3f43fc8fa Merge pull request #114 from cloudnativelabs/113-segment-voilation 
segmentation violation when kube-router is not able to contact api server
 2017-08-09 23:28:12 +05:30
Murali Reddy
801b0e940b segmentation violation when kube-router is not able to contact api server 
Fixes #113
 2017-08-09 23:21:56 +05:30
Bryan Zubrod
1a71a12ec7 vagrant: Local cluster enhancements (#110) 
* Ensure image from current build is used
* Fix vagrant destroy logic
 2017-08-07 21:39:32 -05:00
Murali Reddy
cbfe8e3790 Merge pull request #109 from cloudnativelabs/ip-ip-tunnel-perf 
reduce ipip tunnel MTU by 20 bytes to accommodate the tunnel overhead
 2017-08-07 19:43:10 +05:30
Murali Reddy
898d78d688 reduce ipip tunnel MTU 20 to accommodate the tunnel overhead 
Fixes #108
 2017-08-07 19:35:36 +05:30
Murali Reddy
fcac507d61 Merge pull request #106 from cloudnativelabs/cross-subnet-connectiivty 
Use IP-IP tunnelling for cross-subnet pod connectivity
v0.0.11 		2017-08-06 13:56:02 +05:30
Murali Reddy
b8d3914242 Use IP-IP tunnelling for cross-subnet pod connectivity 
- create a ipip tunnel interface from each node to nodes in the different subnet
- insert route to local routing table using tunnel device

Fixes #92
 2017-08-06 13:05:14 +05:30
Bryan Zubrod
5a3abf9ec1 Add support for testing code changes in kubernetes (#105) 
automated via Vagrant provisioned local VMs

fixes #105
 2017-08-06 01:11:27 -05:00
Murali Reddy
fbdd9e9a6f Merge pull request #100 from cloudnativelabs/99-randomize-service-endpoints 
Randomize service endpoint addition when configuring destination on ipvs service
 2017-08-05 04:01:24 +05:30
Murali Reddy
7934759ac2 Randomize service endpoint addition when configuring destination on ipvs service 
Fixes #99
 2017-08-05 03:38:36 +05:30
Bryan Zubrod
9e75203598 Use libnetwork/ipvs instead of libipvs (#101) 
* Use libnetwork/ipvs alternative
* PR image tag simplification
* Remove nested vendor directories
 2017-08-04 14:07:57 -05:00
Bryan Zubrod
f8174a66be network_route_controller: Avoid redundant policy sets (#98) 
* gofmt

* route_controller: Avoid redundant DefinedSet adds
 2017-08-03 02:49:20 -05:00
Bryan Zubrod
f9ae00be10 Use vendored gobgp to build gobgp client (#95) 
gobgp client inside the kube-router container will now always be in sync with the gobgp library used to build the kube-router binary
 2017-08-02 10:02:21 -05:00
Murali Reddy
3b1257c0a3 adding explicit --kubeconfig param in example daemonset manifests 
We removed implicit fallback to use /var/lib/kube-router/kubeconfig with the commit ccbba72

So kube-router takes explicit --master or --kubeconfig argument or implicitly try to use incluster configuration
v0.0.10 		2017-08-01 16:59:45 +05:30
Murali Reddy
b77c28fc35 Update README.md 2017-08-01 14:51:13 +05:30
Murali Reddy
f5e518e2d6 Merge pull request #91 from cloudnativelabs/90-network-policy-ga 
Netork policy GA: select all pods in namespace if pod selector is not specified in the network policy spec
 2017-07-31 23:14:43 +05:30
Murali Reddy
279bc66a99 Netork policy GA: select all pods in namespace if pod selector is not specified in the network policy spec 
as per semantics https://kubernetes.io/docs/api-reference/v1.7/#networkpolicy-v1-networking

Fixes #90
 2017-07-31 22:47:43 +05:30
Murali Reddy
562008ca8f Merge pull request #83 from dimm0/feature/inclusterconfig 
Using inclusterconfig for default configuration
 2017-07-29 21:05:09 +05:30
Dmitry Mishin
8d2ed48f22 Either of the --master or --kubeconfig is sufficient 2017-07-29 08:14:43 -07:00
Murali Reddy
909c24d9d3 Merge pull request #86 from cloudnativelabs/85-network-policy-ga 
GA network policy does not reject if there is not a single source pod matching a policy
 2017-07-29 18:14:50 +05:30
Murali Reddy
922c9f5808 GA network policy does not reject if there is not a single source pod matching a policy 
Fix ensures below two cases are explicitly handled

 - in the network policy spec for the ingress rule, its optionsl to give 'ports' and 'from' details
   when not specified it translates to match all ports, match all sources respectivley

 - user may explicitly give the 'ports' and 'from' details in the ingress rule. But at any given point
   its possible there is no matching pods (with labels defined in 'from') in the namespace.

Before the fix both the cases were handled similarly resulting in unexpected behaviour

Fixes #85
 2017-07-29 16:53:52 +05:30
Dmitry Mishin
1d62de7159 Merge branch 'master' into feature/inclusterconfig 2017-07-28 12:14:44 -07:00
Dmitry Mishin
ccbba7206d Using inclusterconfig for default configuration 2017-07-28 11:45:23 -07:00
Murali Reddy
c85e02a061 Update README.md 2017-07-28 14:38:41 +05:30
Murali Reddy
c1a4e65a35 Update README.md 2017-07-28 14:37:50 +05:30
Murali Reddy
7d2d5b4ebb update readme to mention support for network policy GA 2017-07-28 14:35:45 +05:30
Murali Reddy
c0a14e8ebc Merge pull request #82 from cloudnativelabs/network-policy-ga 
support for network policy GA
 2017-07-28 14:34:21 +05:30
Murali Reddy
b4c063ee8a support for network policy GA 
with this refactoring support for network policy V1 (or GA) is added.
Changes are backward compatible so beta network policy semantics
are still available for k8s ver 1.6.* and less

Fixes #16
 2017-07-28 11:12:52 +05:30
Murali Reddy
8a3d6c01a7 Merge pull request #81 from cloudnativelabs/cleanup-config 
fix null pointer dereference during kube-router --cleanup-config
 2017-07-27 23:35:07 +05:30
Murali Reddy
a86bc44ecc fix null pointer dereference during kube-router --cleanup-config 
Fixes #79
 2017-07-27 23:24:03 +05:30
Murali Reddy
c64b72e4a3 Merge pull request #76 from cloudnativelabs/aws-src-dst-check 
fix Source/destination check disable logic
 2017-07-21 15:43:36 +05:30
Murali Reddy
449f1bfcc6 fix Source/destination check disable logic 2017-07-21 15:20:42 +05:30
Murali Reddy
04d0ed3be8 Merge pull request #74 from cloudnativelabs/prometheus 
WIP prometheus metrics: add pps in and out per service backend
 2017-07-20 01:30:48 +05:30
Murali Reddy
ef66b01002 WIP prometheus metrics: add pps in and out per service backend 2017-07-20 01:01:38 +05:30
Murali Reddy
84e0357977 Merge pull request #73 from cloudnativelabs/export_policy 
BGP export polices to advertise routes so that extra hop is avoided
 2017-07-19 22:08:16 +05:30
Murali Reddy
83ca0c42d7 BGP export polices to advertise routes so that extra hop is avoided 
Fixes #71
 2017-07-19 21:13:03 +05:30
Murali Reddy
3f062f2828 fixing regression due to #71 v0.0.9 2017-07-18 05:57:29 +05:30
Murali Reddy
082efddf90 Merge pull request #72 from cloudnativelabs/bgp-export-policies 
add a BGP export policy on each node so that, learned routes from iBGP peers are never advertised to global peer
v0.0.8 		2017-07-18 04:12:30 +05:30
Murali Reddy
e3ea82a1d1 add a BGP export policy on each node so that, learned routes 
from iBGP peers are never advertised to global peer

Fixes #71
 2017-07-18 04:04:30 +05:30
Murali Reddy
e8ce4a96ce Merge pull request #70 from cloudnativelabs/route-cleanup 
on BGP peer down, advertised route from peer is not cleaned-up in local routing table
 2017-07-17 09:26:13 +05:30
Murali Reddy
fb09646212 on BGP peer down, advertised route from peer is not cleaned-up in local routing table 
Fixes #69
 2017-07-17 09:20:11 +05:30
Murali Reddy
8023021c38 Merge pull request #65 from cloudnativelabs/prometheus 
WIP : Expose active/inactive connection to service backend as prometheus metrics
 2017-07-16 03:42:33 +05:30
Murali Reddy
60482bcd4c WIP : Expose active/inactive connection to service backend as prometheus metrics 
putting basic skelton framework to use prometheus

Fixes #5
 2017-07-16 03:11:13 +05:30