XML

Word

Printable

Type: Epic
Resolution: Unresolved
Priority: Major
Fix Version/s: CNV v4.17.0
Affects Version/s: None
Component/s: CNV Network
Labels:

Epic Name:
cnv-ovn2k-egress
Acceptance Criteria:
Hide

(must-have) VMs can egress to the internet over the secondary network

(must-have) Secondary NICs of VMs can be exposed to the internet using LoadBalancer services

(must-have) The solution must run in cloud providers (tolerate port security, or its equivalents)

(must-have) One of:

IPAM must assign a unique subnet to each secondary network

OR

Must handle overlapping CIDRs (and duplicated CIDRs) among the secondary networks

(must-have) Downstream documentation mentioning this option in our existing docs

(must-have) Tier-2 test coverage
Show
(must-have) VMs can egress to the internet over the secondary network (must-have) Secondary NICs of VMs can be exposed to the internet using LoadBalancer services (must-have) The solution must run in cloud providers (tolerate port security, or its equivalents) (must-have) One of: IPAM must assign a unique subnet to each secondary network OR Must handle overlapping CIDRs (and duplicated CIDRs) among the secondary networks (must-have) Downstream documentation mentioning this option in our existing docs (must-have) Tier-2 test coverage
Current Status:
Green
Epic Status:
To Do
Feature Link:
CNV-16692 - OVN Secondary Network
Parent Link:
CNV-16692OVN Secondary Network
Hierarchy Progress Bar:

67% To Do, 0% In Progress, 33% Done
Ready-Ready:

dev-ready, doc-ready, po-ready, qe-ready, ux-ready
Status Summary:

Hide

2024-03-06: There are no blockers we know of. The proposal was well received. This functionality is also sought after by our upstream partners. However, since these discussions are in their early stage and we have to complete IPAM CNV-24260 first, I'm ...

Show
2024-03-06: There are no blockers we know of. The proposal was well received. This functionality is also sought after by our upstream partners. However, since these discussions are in their early stage and we have to complete IPAM CNV-24260 first, I'm ...

SFDC Cases Links:
SFDC Cases Counter:
SFDC Cases Open:

Goal

Provide secondary overlay networks with access to the external network.

User Stories

As an owner of a VM that is connected only to a secondary overlay network, I want to fetch resources from outside networks (internet).
I do not want to change my application to support multiple NICs.

Non-Requirements

Ingress is tracked in CNV-24258

Notes

Once we have both ingress and egress, we may be able to obsolete the custom solution on OVN-K introduced for HyperShift.

depends on

SDN-4521 Ingress and egress for OVN Kubernetes secondary networks

RFE-4938 Support of egress and Service ingress for secondary OVN Kubernetes networks

Accepted

is blocked by

CNV-24260 [TP] OVN Kubernetes multi-homing in CNV: IPAM

In Progress

is depended on by

CNV-34629 Create secondary networks on AWS and ROSA (bare metal)

Backlog

is documented by

CNV-39862 Document egress attribute

relates to

CNV-24258 OVN Kubernetes multi-homing in CNV: Services and ingress

Backlog

(1 relates to)

1.	upstream roadmap issue	New	Unassigned
2.	upstream documentation	New	Unassigned
3.	upgrade consideration	New	Unassigned
4.	CEE/PX summary presentation	New	Unassigned
5.	test plans in polarion	New	Unassigned
6.	automated tests	New	Unassigned
7.	downstream documentation merged	New	Unassigned

Assignee:: Petr Horacek

Reporter:: Petr Horacek

QA Contact:: Nir Rozen

Votes:: 0 Vote for this issue

Watchers:: 5 Start watching this issue

Created:: 2023/10/09 8:28 AM

Updated:: 2024/04/26 1:24 PM

Details

Description

Goal

User Stories

Non-Requirements

Notes

Attachments

Issue Links

Sub-Tasks

Activity

People

Dates

Hide