XML

Word

Printable

Type: Feature
Resolution: Duplicate
Priority: Critical
Fix Version/s: None
Affects Version/s: None
Component/s: CNV Network
Labels:
- CY25
- dkgap
- fabiand25
- sachin25

Story Points:
21
Blocked:
False
Ready:
False
Parent Link:
VIRTSTRAT-29Multi-tenant networks for VMs
Hierarchy Progress Bar:

7% To Do, 0% In Progress, 93% Done

SFDC Cases Links:
SFDC Cases Open:
SFDC Cases Counter:

Market:

The goal of this effort is to leverage OVN Kubernetes SDN to satisfy networking requirements of both traditional and modern virtualization. This Feature describes the envisioned outcome and tracks its implementation.

Current state

In its current state, OpenShift Virtualization provides a flexible toolset allowing customers to connect VMs to the physical network. It also has limited secondary overlay network capabilities and Pod network support.

It suffers from several gaps: Topology of the default pod network is not suitable for typical VM workload - due to that we are missing out on many of the advanced capabilities of OpenShift networking, and we also don't have a good solution for public cloud. Another problem is that while we provide plenty of tools to build a network solution, we are not very good in guiding cluster administrators configuring their network, making them rely on their account team.

Desired outcome

Provide:

Networking solution for public cloud
Advanced SDN networking functionality such as IPAM, routed ingress, DNS and cloud-native integration
Ability to host traditional VM workload imported from other virtualization platforms

... while maintaining networking expectations of a typical VM workload:

Sticky IPs allowing seamless live migration
External IP reflected inside the guest, i.e. no NAT for east-west traffic

Additionally, make our networking configuration more accessible to newcomers by providing a finite list of user stories mapped to recommended solutions.

User stories

You can find more info about this effort in https://docs.google.com/document/d/1jNr0E0YMIHsHu-aJ4uB2YjNY00L9TpzZJNWf3LxRsKY/edit

is blocked by

CNV-29254 UI for OVN Secondary Network

Closed

is depended on by

CNV-23415 expose an API for secondary OVN network interface assignment to HS/KV vms

Closed

relates to

CNV-29958 Release note: NEW - UI OVN secondary network

Closed

split to

VIRTSTRAT-234 Secondary user-defined networks with localnet topology

VIRTSTRAT-384 Secondary user-defined networks with L2 overlay topology

VIRTSTRAT-299 Support label selectors in MultiNetworkPolicies

VIRTSTRAT-427 Seamless live migration

VIRTSTRAT-444 MAC spoof filtering control with the localnet topology

VIRTSTRAT-127 Specific IP can be requested for VM connected to a user-defined network

VIRTSTRAT-196 QinQ support with localnet topology

VIRTSTRAT-210 Port mirroring

VIRTSTRAT-288 Promiscuous mode control with the localnet topology

VIRTSTRAT-343 Port security with the localnet topology

VIRTSTRAT-376 Network QoS configuration

VIRTSTRAT-76 Integration between VMs and primary user-defined networks

Closed

(10 split to)

Assignee:: Petr Horacek

Reporter:: Fabian Deutsch

Votes:: 0 Vote for this issue

Watchers:: 14 Start watching this issue

Created:: 2022/03/01 11:57 AM

Updated:: 2025/04/08 3:48 PM

Resolved:: 2024/11/14 1:15 PM

Details

Description

Current state

Desired outcome

User stories

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates