Skip to content

OVN-Kubernetes v1.0.0

Latest
Latest
Compare
Choose a tag to compare
@tssurya tssurya released this 14 Jun 19:54
· 572 commits to master since this release
v1.0.0
56ddcd7
This commit was created on github.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.

v1.0.0

📢 We are happy to announce the release of OVN-Kubernetes v1.0.0, our first major release. 🎉 🎊 🎆 🎇💥
This version of OVN-Kubernetes uses:
☸️ Kubernetes v1.29.2
🔁 OVN ovn-24.03.2-5.fc39.x86_64
🔄 OVS openvswitch-3.2.2-1.fc39.x86_64

Summary of important changes for this release

This release includes many exciting features that end-users can leverage:

🔀 Interconnect mode of deploying OVN-Kubernetes with a distributed database architecture - this makes OVN-Kubernetes more scalable, performant and secure

🌐 EgressIPs which allows users to send northbound traffic from the selected pods using "the special pool of user configured egressIPs"

🔐 EgressFirewall which allows users to impose fine grained traffic security rules on northbound traffic leaving from the selected pods in the cluster

🎯 EgressQoS which performs DSCP markings on pods that can be leveraged to perform traffic shaping and policing

🎖️ EgressService which allows users to send northbound traffic from the selected pods using the load balancer service ingress VIP (reverse of service ingress)

🌐 Multiple External Gateways which allows pods to send egress traffic outside the cluster via a set of defined egress gateway pods

🔐 AdminNetworkPolicy which allows admins to create cluster-wide security policies that limit network traffic based on the principle of least privilege and zero trust

💫 Multihoming which allows plugging multiple interfaces to a Pod with each of the secondary interfaces managed by OVN-Kubernetes CNI

🔐 MultiNetworkPolicy provides an ability to define network policies on the secondary interfaces of the pods

📥 HardwareAcceleration provides an ability to achieve line speed Kubernetes Pod networking - transmit/receive, network policy, NATing, Load Balancers, and so on

🏗️ Kubevirt VM Live Migration allows kubevirt virtual machines to be live migrated while keeping the established TCP connections alive, and preserving the VM IP configuration.

🌉 Hybrid Overlay provides the ability to run both linux and windows nodes on your same cluster

🚇 Tunneling over Multiple NICS provides an ability to tunnel traffic from K8s Pods over different NICs on the same host.

Check out the ovn-kubernetes website for more information. ☸️

Please reach out to us and provide feedback based on your experience of using this release so that we can keep improving this project!

Full Changelog: v0.3.0...release-1.0

Contributors 💖

Many thanks to all of our contributors who helped make this happen 😄👏 !! We truly couldn't have done this without all your contributions. Contributors info taken based on this data.

@girishmg @trozet @dcbw @tssurya @alexanderConstantinescu @npinaeva @jcaamano @martinkennelly @JacobTanenbaum @maiqueb @danwinship @andreaskaris @kyrtapz @flavio-fernandes @astoycos @cathy-zhou @ricky-rav @oribon @fedepaol @shettyg @squeed @dave-tucker @pecameron @ionutbalutoiu @numansiddique @adrianchiris @pperiyasamy @dceara @abhat @aserdean @jordigilh @Pardhakeswar @qinqon @bpickard22 @Billy99 @alinbalutoiu @jluhrsen @vjayaramrh @russellb @pliurh @zshi-redhat @nerdalert @zeeke @as-com @hzhou8 @creydr @roytman @msherif1234 @winsopc @vishnoianil @oshoval @moshe010 @wizhaoredhat @gvbalaji @igsilya @bn222 @shahar-klein @arghosh93 @lanoxx @DmytroLinkin @mccv1r0 @TrevorTaoARM @rcarrillocruz @arkadeepsen @markmc @skitt @vpickard @jotak @masap @dougsland @anfredette @aojea @lmilleri @josecastillolema @sdsen @ganboing @rsevilla87 @stbenjam @amorenoz @haojue @rbbratta @Reamer @krescent @danielmellado @mansikulkarni96 @venuiyer @JocelynBerrendonner @SchSeba @JM1 @hareeshpc @csahithi @dtzhou2

Docker Image Manifests

Our images can be downloaded from the GH Container registry here.

Binaries Released

  • ovnkube which is our main single all-in-one binary executable used to launch the ovnkube control plane and data plane pods in a kubernetes deployment
  • ovn-k8s-cni-overlay is the cni executable to be placed in /opt/cni/bin (or another directory in which kubernetes will look for the plugin) so that it can be invoked for each pod event by kubernetes
  • hybrid-overlay-node is a node controller to integrate disparate networks with VXLAN tunnels
  • ovn-kube-util contains the Utils for ovn-kubernetes
  • ovndbchecker runs ovn db checker to ensure raft membership and db health on default deployment modes
  • ovnkube-trace is the binary that contains ovnkube-trace which is an abstraction used to invoke OVN/OVS packet tracing utils
  • ovnkube-identity is the executable that is invoked to run ovn-kubernetes identity manager, which includes the admission webhook and the CertificateSigningRequest approver

Contributors

markmc, abhat, and 90 other contributors
Assets 9
Loading
0 Join discussion