XML

Word

Printable

Type: Feature
Resolution: Duplicate
Priority: Critical
Fix Version/s: None
Affects Version/s: None
Component/s: CNV Network
Labels:
- CY25
- dkgap
- fabiand25
- sachin25

Story Points:
21
Blocked:
False
Ready:
False
Parent Link:
VIRTSTRAT-29Multi-tenant networks for VMs
Hierarchy Progress Bar:

5% To Do, 0% In Progress, 95% Done

SFDC Cases Links:
SFDC Cases Counter:
SFDC Cases Open:

Market:

The goal of this effort is to leverage OVN Kubernetes SDN to satisfy networking requirements of both traditional and modern virtualization. This Feature describes the envisioned outcome and tracks its implementation.

Current state

In its current state, OpenShift Virtualization provides a flexible toolset allowing customers to connect VMs to the physical network. It also has limited secondary overlay network capabilities and Pod network support.

It suffers from several gaps: Topology of the default pod network is not suitable for typical VM workload - due to that we are missing out on many of the advanced capabilities of OpenShift networking, and we also don't have a good solution for public cloud. Another problem is that while we provide plenty of tools to build a network solution, we are not very good in guiding cluster administrators configuring their network, making them rely on their account team.

Desired outcome

Provide:

Networking solution for public cloud
Advanced SDN networking functionality such as IPAM, routed ingress, DNS and cloud-native integration
Ability to host traditional VM workload imported from other virtualization platforms

... while maintaining networking expectations of a typical VM workload:

Sticky IPs allowing seamless live migration
External IP reflected inside the guest, i.e. no NAT for east-west traffic

Additionally, make our networking configuration more accessible to newcomers by providing a finite list of user stories mapped to recommended solutions.

User stories

You can find more info about this effort in https://docs.google.com/document/d/1jNr0E0YMIHsHu-aJ4uB2YjNY00L9TpzZJNWf3LxRsKY/edit

is blocked by

CNV-29254 UI for OVN Secondary Network

Closed

is depended on by

CNV-23415 expose an API for secondary OVN network interface assignment to HS/KV vms

Closed

relates to

CNV-29958 Release note: NEW - UI OVN secondary network

Closed

split to

CNV-51203 Secondary user-defined networks with localnet topology

CNV-51204 Secondary user-defined networks with L2 overlay topology

CNV-51202 Seamless live migration

CNV-51208 MAC spoof filtering control with the localnet topology

CNV-51211 Support label selectors in MultiNetworkPolicies

CNV-51205 QinQ support with localnet topology

CNV-51209 Promiscuous mode control with the localnet topology

CNV-51210 Port security with the localnet topology

CNV-51212 Port mirroring

CNV-51213 Network QoS configuration

CNV-51214 Specific IP can be requested for VM connected to a user-defined network

CNV-51201 Integration between VMs and primary user-defined networks

In Progress

(10 split to)

Assignee:: Petr Horacek

Reporter:: Fabian Deutsch

QA Contact:: Nir Rozen

Votes:: 0 Vote for this issue

Watchers:: 14 Start watching this issue

Created:: 2022/03/01 11:57 AM

Updated:: 2024/11/14 1:53 PM

Resolved:: 2024/11/14 1:15 PM

Details

Description

Current state

Desired outcome

User stories

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates