Copyright 2016 Nokia. All rights reserved. Copyright 2013 Alcatel-Lucent. All rights reserved. CONFIDENTIAL - SOLELY FOR AUTHORIZED PERSONS HAVING A NEED TO KNOW PROPRIETARY – USE PURSUANT TO COMPANY INSTRUCTION Nuage Networks Overlay Networking for Openshift and Kubernetes with Nuage VCS Vishal Patil, Aniket Bhat
This document is posted to help you gain knowledge. Please leave a comment to let me know what you think about it! Share it to your friends and learn new things together.
Transcript
Copyright 2016 Nokia. All rights reserved.
Copyright 2013 Alcatel-Lucent. All rights reserved. CONFIDENTIAL - SOLELY FOR AUTHORIZED PERSONS HAVING A NEED TO KNOW
PROPRIETARY – USE PURSUANT TO COMPANY INSTRUCTION Nuage Networks
Overlay Networking for Openshift and Kubernetes with Nuage VCS Vishal Patil, Aniket Bhat
Copyright 2016 Nokia. All rights reserved.
Agenda
• Kubernetes (K8s) Overview
• Nuage VCS Integration with OpenShift/K8s
• Demo
Copyright 2016 Nokia. All rights reserved.
Kubernetes Architecture
Master
SCHEDULER
API PROXY
AUTH
REPLICATION CONTROLLER
Node
KUBELET KUBE PROXY
POD (SVC 2)
POD (SVC 2)
Node
KUBELET KUBE PROXY
POD (SVC 1)
POD (SVC 1)
CLIENT
C1 C1
C1 C2 C1 C2
ETCD
Copyright 2016 Nokia. All rights reserved.
▪ etcd ▪ key value store that stores the persistent master state
▪ API Server ▪ Authenticated interface between users and Kubernetes
▪ Scheduler
▪ Schedules pods to nodes/minions
▪ Controller Manager
▪ Monitors replication controllers and adds/removes pods to maintain desired number of pods in a service
Master
Kubernetes Components
Master
SCHEDULER
API PROXY
AUTH
REPLICATION CONTROLLER
CLIENT
ETCD
Copyright 2016 Nokia. All rights reserved.
▪ Docker
▪ Engine for containers
▪ Kubelet
▪ Manages Pods on the nodes
▪ Kube-Proxy
▪ Simple network proxy to implement ‘Services’
▪ Two modes supported - iptables based or user-space proxying
▪ TCP and UDP stream forwarding (round robin) across a set of backends
Node
Kubernetes Components
Node
KUBELET KUBE PROXY
POD (SVC 2)
POD (SVC 2)
C1 C2 C1 C2
Copyright 2016 Nokia. All rights reserved.
Kubernetes Networking
▪ Pod gets an IP from a flat shared networking namespace. ▪ Containers within the pod share the same IP. ▪ Container in a pod use localhost networking. ▪ Pods should typically use service IPs and service ports to communicate with
other pods ▪ Kubernetes is non-prescriptive about the network design per se. ▪ Several vendor choices: