Skip to content

Commit

Permalink
Add Node Selector in ACNP/ANP ingress/egress rules (#3038)
Browse files Browse the repository at this point in the history 
1. Add `nodeSelector` field in ACNP/ANP ingress/egress rules to restrict
traffic to/from particular Nodes.

2. Add Node IPs info in the output of `antctl get addressgroup`.
For example:
```
antctl get addressgroup
NAME                                 POD-IPS                                NODE-IPS
5e1bbf8e-67a3-5384-b2bf-e42e93bd68aa <NONE>                                 192.168.0.1, 10.176.27.105
f8c56571-d6db-51ec-9352-a9a47476a9a0 192.168.0.70,192.168.1.38,192.168.1.39 <NONE>

antctl get addressgroup -oyaml
- name: 5e1bbf8e-67a3-5384-b2bf-e42e93bd68aa
  nodes:
  - ip: 192.168.0.1, 10.176.27.105
    node:
      name: wenqiq01-1
- name: f8c56571-d6db-51ec-9352-a9a47476a9a0
  pods:
  - ip: 192.168.1.38
    pod:
      name: iperf3-55bcff667d-v495l
      namespace: demo
  - ip: 192.168.1.39
    pod:
      name: iperf3-55bcff667d-c74ll
      namespace: demo
  - ip: 192.168.0.70
    pod:
      name: iperf3-55bcff667d-pz2d2
      namespace: demo
```

Fixes: #3023

Signed-off-by: Wenqi Qiu <wenqiq@vmware.com>
  • Loading branch information
@wenqiq
wenqiq committed Mar 24, 2022
1 parent c8a3544 commit 073f5ab
Show file tree
Hide file tree
Showing 42 changed files with 2,593 additions and 415 deletions.
96 changes: 96 additions & 0 deletions build/yamls/antrea-aks.yml
View file
Expand Up @@ -616,6 +616,30 @@ spec:
match:
type: string
type: object
nodeSelector:
properties:
matchExpressions:
items:
properties:
key:
type: string
operator:
enum:
- In
- NotIn
- Exists
- DoesNotExist
type: string
values:
items:
pattern: ^(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])?$
type: string
type: array
type: object
type: array
matchLabels:
x-kubernetes-preserve-unknown-fields: true
type: object
podSelector:
properties:
matchExpressions:
Expand Down Expand Up @@ -787,6 +811,30 @@ spec:
- Self
type: string
type: object
nodeSelector:
properties:
matchExpressions:
items:
properties:
key:
type: string
operator:
enum:
- In
- NotIn
- Exists
- DoesNotExist
type: string
values:
items:
pattern: ^(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])?$
type: string
type: array
type: object
type: array
matchLabels:
x-kubernetes-preserve-unknown-fields: true
type: object
podSelector:
properties:
matchExpressions:
Expand Down Expand Up @@ -1447,6 +1495,30 @@ spec:
matchLabels:
x-kubernetes-preserve-unknown-fields: true
type: object
nodeSelector:
properties:
matchExpressions:
items:
properties:
key:
type: string
operator:
enum:
- In
- NotIn
- Exists
- DoesNotExist
type: string
values:
items:
pattern: ^(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])?$
type: string
type: array
type: object
type: array
matchLabels:
x-kubernetes-preserve-unknown-fields: true
type: object
podSelector:
properties:
matchExpressions:
Expand Down Expand Up @@ -1586,6 +1658,30 @@ spec:
matchLabels:
x-kubernetes-preserve-unknown-fields: true
type: object
nodeSelector:
properties:
matchExpressions:
items:
properties:
key:
type: string
operator:
enum:
- In
- NotIn
- Exists
- DoesNotExist
type: string
values:
items:
pattern: ^(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])?$
type: string
type: array
type: object
type: array
matchLabels:
x-kubernetes-preserve-unknown-fields: true
type: object
podSelector:
properties:
matchExpressions:
Expand Down
96 changes: 96 additions & 0 deletions build/yamls/antrea-eks.yml
View file
Expand Up @@ -616,6 +616,30 @@ spec:
match:
type: string
type: object
nodeSelector:
properties:
matchExpressions:
items:
properties:
key:
type: string
operator:
enum:
- In
- NotIn
- Exists
- DoesNotExist
type: string
values:
items:
pattern: ^(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])?$
type: string
type: array
type: object
type: array
matchLabels:
x-kubernetes-preserve-unknown-fields: true
type: object
podSelector:
properties:
matchExpressions:
Expand Down Expand Up @@ -787,6 +811,30 @@ spec:
- Self
type: string
type: object
nodeSelector:
properties:
matchExpressions:
items:
properties:
key:
type: string
operator:
enum:
- In
- NotIn
- Exists
- DoesNotExist
type: string
values:
items:
pattern: ^(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])?$
type: string
type: array
type: object
type: array
matchLabels:
x-kubernetes-preserve-unknown-fields: true
type: object
podSelector:
properties:
matchExpressions:
Expand Down Expand Up @@ -1447,6 +1495,30 @@ spec:
matchLabels:
x-kubernetes-preserve-unknown-fields: true
type: object
nodeSelector:
properties:
matchExpressions:
items:
properties:
key:
type: string
operator:
enum:
- In
- NotIn
- Exists
- DoesNotExist
type: string
values:
items:
pattern: ^(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])?$
type: string
type: array
type: object
type: array
matchLabels:
x-kubernetes-preserve-unknown-fields: true
type: object
podSelector:
properties:
matchExpressions:
Expand Down Expand Up @@ -1586,6 +1658,30 @@ spec:
matchLabels:
x-kubernetes-preserve-unknown-fields: true
type: object
nodeSelector:
properties:
matchExpressions:
items:
properties:
key:
type: string
operator:
enum:
- In
- NotIn
- Exists
- DoesNotExist
type: string
values:
items:
pattern: ^(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])?$
type: string
type: array
type: object
type: array
matchLabels:
x-kubernetes-preserve-unknown-fields: true
type: object
podSelector:
properties:
matchExpressions:
Expand Down
96 changes: 96 additions & 0 deletions build/yamls/antrea-gke.yml
View file
Expand Up @@ -616,6 +616,30 @@ spec:
match:
type: string
type: object
nodeSelector:
properties:
matchExpressions:
items:
properties:
key:
type: string
operator:
enum:
- In
- NotIn
- Exists
- DoesNotExist
type: string
values:
items:
pattern: ^(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])?$
type: string
type: array
type: object
type: array
matchLabels:
x-kubernetes-preserve-unknown-fields: true
type: object
podSelector:
properties:
matchExpressions:
Expand Down Expand Up @@ -787,6 +811,30 @@ spec:
- Self
type: string
type: object
nodeSelector:
properties:
matchExpressions:
items:
properties:
key:
type: string
operator:
enum:
- In
- NotIn
- Exists
- DoesNotExist
type: string
values:
items:
pattern: ^(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])?$
type: string
type: array
type: object
type: array
matchLabels:
x-kubernetes-preserve-unknown-fields: true
type: object
podSelector:
properties:
matchExpressions:
Expand Down Expand Up @@ -1447,6 +1495,30 @@ spec:
matchLabels:
x-kubernetes-preserve-unknown-fields: true
type: object
nodeSelector:
properties:
matchExpressions:
items:
properties:
key:
type: string
operator:
enum:
- In
- NotIn
- Exists
- DoesNotExist
type: string
values:
items:
pattern: ^(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])?$
type: string
type: array
type: object
type: array
matchLabels:
x-kubernetes-preserve-unknown-fields: true
type: object
podSelector:
properties:
matchExpressions:
Expand Down Expand Up @@ -1586,6 +1658,30 @@ spec:
matchLabels:
x-kubernetes-preserve-unknown-fields: true
type: object
nodeSelector:
properties:
matchExpressions:
items:
properties:
key:
type: string
operator:
enum:
- In
- NotIn
- Exists
- DoesNotExist
type: string
values:
items:
pattern: ^(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])?$
type: string
type: array
type: object
type: array
matchLabels:
x-kubernetes-preserve-unknown-fields: true
type: object
podSelector:
properties:
matchExpressions:
Expand Down

0 comments on commit 073f5ab

Please sign in to comment.