Kubernetes Networking Concepts: Difference between revisions

From NovaOrdis Knowledge Base
Jump to navigation Jump to search
Line 25: Line 25:
   
   
  kubectl run -it --rm --restart=Never --image=infoblox/dnstools:latest dnstools
  kubectl run -it --rm --restart=Never --image=infoblox/dnstools:latest dnstools
=Network Plugin=
==Flannel==
Flannel is the default network plugin that comes with Kubespray. Flannel is an L2 overlay network solution. An L2 solution is difficult to troubleshoot due to packet encapsulation. Also, every node in the network is state-heavy (VLANs, tunnels).
==Calico==
Calico is a pure L3 fabric solution.

Revision as of 00:22, 7 December 2019

Internal

TO DO

Kube-proxy

Kube-proxy

Pod Network

Every pod in the Kubernetes cluster has its own IP address, which is routable on the pod network, so every pod on the pod network can talk directly to every other pod.

The DNS Service

Each Kubernetes cluster has an internal DNS service, with a static IP address that is hardcoded into every pod on the cluster. Every new Service is automatically registered with the cluster's DNS service so cluster components can find services by name. StatefulSets and the individual pods managed by a StatefulSet are also registered with the DNS service.

The DNS service is built on CoreDNS.

Testing name resolution:

kubectl run -it --rm --restart=Never --image=infoblox/dnstools:latest dnstools

Network Plugin

Flannel

Flannel is the default network plugin that comes with Kubespray. Flannel is an L2 overlay network solution. An L2 solution is difficult to troubleshoot due to packet encapsulation. Also, every node in the network is state-heavy (VLANs, tunnels).

Calico

Calico is a pure L3 fabric solution.