<div dir="ltr"><br><div class="gmail_extra"><br><div class="gmail_quote">On 14 November 2017 at 14:40, Sébastien Bernard <span dir="ltr"><<a href="mailto:sbernard@nerim.net" target="_blank">sbernard@nerim.net</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">Hello,<br>
<br>
I'm looking for some pieces of advise to use a network based on openvswitch with kubernetes.<br>
<br>
I've tried to follow the following document <a href="https://github.com/openvswitch/ovn-kubernetes" rel="noreferrer" target="_blank">https://github.com/openvswitch<wbr>/ovn-kubernetes</a>, with some success and some failures.</blockquote><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">
<br>
First, it's not really clear what version of kubernetes is supported with this software. I followed all the recipe, and at the end when starting the ovs-k8s-watcher, I get error about the system:anonymous-user not having the right to list services (tried with kubernetes 1.8).<br></blockquote><div><br></div><div>I have seen it work till k8s 1.7. Haven't tried k8s 1.8 yet.</div><div>This is most likely some permission issue. Haven't seen it before. Are you running it as a root? Can you use kubectl to list services? How about curl. For e.g:</div><div>curl <a href="http://127.0.0.1:8080/api/v1/watch/endpoints">http://127.0.0.1:8080/api/v1/watch/endpoints</a><br></div><div> </div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">
<br>
Second, I was puzzled by the install procedure, I don't really know where the kubernetes configuration is modified. I was expecting some yaml to apply with the kubectl, and nothing seems to change the kube configuration. Where's the link between the pods and the ovs ?<br></blockquote><div><br></div><div>When you do the "minion-init", it installs a OVN CNI plugin. The plugin gets invoked by kubelet when a pod gets scheduled. The plugin will setup the IP address and also add the pod's network interface to OVS.</div><div><br></div><div> </div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">
<br>
Third, is the 'ovn-k8s-overlay minion-init ' to be run on all minion and the master also or only on the nodes ?<br></blockquote><div>minion-init only on the nodes.</div><div><br></div><div> </div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">
<br>
And last, what is the ovn-kube exectutable and how do you use it ?<br></blockquote><div><br></div><div>This is a golang watcher which right now is only for advanced users, which calls things like "minion-init", "master-init" etc on its own, allocating subnets etc. We need to do a better job documenting it.</div><div><br></div><div>I would suggest starting from the vagrant here. To get familiar with installation procedure. I often run it on my mac and it works.</div><div><a href="https://github.com/openvswitch/ovn-kubernetes/tree/master/vagrant">https://github.com/openvswitch/ovn-kubernetes/tree/master/vagrant</a><br></div><div><br></div><div>You can then look at the installation scripts the vagrant uses.</div><div><br></div><div>e.g:</div><div><a href="https://github.com/openvswitch/ovn-kubernetes/blob/master/vagrant/provisioning/setup-master.sh">https://github.com/openvswitch/ovn-kubernetes/blob/master/vagrant/provisioning/setup-master.sh</a><br></div><div><a href="https://github.com/openvswitch/ovn-kubernetes/blob/master/vagrant/provisioning/setup-k8s-master.sh">https://github.com/openvswitch/ovn-kubernetes/blob/master/vagrant/provisioning/setup-k8s-master.sh</a><br></div><div> </div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">
<br>
Seb<br>
<br>
______________________________<wbr>_________________<br>
discuss mailing list<br>
<a href="mailto:discuss@openvswitch.org" target="_blank">discuss@openvswitch.org</a><br>
<a href="https://mail.openvswitch.org/mailman/listinfo/ovs-discuss" rel="noreferrer" target="_blank">https://mail.openvswitch.org/m<wbr>ailman/listinfo/ovs-discuss</a><br>
</blockquote></div><br></div></div>