Bug 1585217 - [RFE] Support the Kuryr network per namespace driver
Summary: [RFE] Support the Kuryr network per namespace driver
Keywords:
Status: CLOSED CURRENTRELEASE
Alias: None
Product: OpenShift Container Platform
Classification: Red Hat
Component: RFE
Version: unspecified
Hardware: Unspecified
OS: Unspecified
high
medium
Target Milestone: ---
: 3.11.0
Assignee: Luis Tomas Bolivar
QA Contact: Jon Uriarte
URL:
Whiteboard:
: 1614216 (view as bug list)
Depends On: 1567062 1629573
Blocks:
TreeView+ depends on / blocked
 
Reported: 2018-06-01 14:30 UTC by Luis Tomas Bolivar
Modified: 2023-09-14 04:29 UTC (History)
8 users (show)

Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed: 2019-06-14 14:45:39 UTC
Target Upstream Version:
Embargoed:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Github openshift openshift-ansible pull 8340 0 None closed Add support for subnet per namespace kuryr feature 2020-04-05 06:40:05 UTC
Github openshift openshift-ansible pull 9422 0 None closed Add kuryr namespace isolation support 2020-04-05 06:40:04 UTC

Description Luis Tomas Bolivar 2018-06-01 14:30:49 UTC 
Kuryr is adding support for a new subnet driver that enables to have a different subnet for each namespace.

As it provides this functionality by relying on K8s CRDs, a few modifications are needed to provide the option of enabling the new driver (and namespace handler) and create the required CRD.
Comment 1 Luis Tomas Bolivar 2018-08-09 08:16:09 UTC 
To ensure isolation between different namespaces, it is not only needed
to configure the kuryr namespace subnet driver but also the namespace
security group driver, including the creation of a couple of extra security
groups to ensure default namespace can access and be accessed by any pod.
Comment 2 Luis Tomas Bolivar 2018-08-09 08:17:18 UTC 
*** Bug 1614216 has been marked as a duplicate of this bug. ***
Comment 6 Red Hat Bugzilla 2023-09-14 04:29:17 UTC 
The needinfo request[s] on this closed bug have been removed as they have been unresolved for 1000 days
Note You need to log in before you can comment on or make changes to this bug.