-
Notifications
You must be signed in to change notification settings - Fork 2.8k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
toFQDNs: Add documention and metrics for fqdn
identities
#33237
Conversation
fqdn
identities
68760c5
to
e863cd4
Compare
/test |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Left one comment, but docs good otherwise
Thanks for the review - I think the comment got lost somewhere? |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I think the comment got lost somewhere?
sorry, I don't know how that happened
e863cd4
to
8e20c34
Compare
/test |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
approved for metrics changes
Nice! |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
LGTM, except for a couple of typos
This adds a new metric which counts the number of identities per label source. This allows users to have a bit more precise breakdown of what types of identities are allocated over the existing `identities` metrics. For example, the new metric allows users to track precisely how many identities contain a `fqdn` or `cidr` label, where as the per-type metric puts them in the same bucket. There are only about a dozen different label sources, so cardinality of the metric should be low. Signed-off-by: Sebastian Wicki <sebastian@isovalent.com>
This adds a new simple metric which counts the number of registered `ToFQDN` selectors. This, in combination with the previously added `identity_label_sources` metric, allows users to monitor how many `fqdn` identities are allocated compared to how may `ToFQDN` selectors are registered. If there are orders of magnitude more identities than selectors, then this indicates that selectors are overlapping in different combinations, which can cause the local identity space to exhaust quickly. Signed-off-by: Sebastian Wicki <sebastian@isovalent.com>
This commit updates our docs to use the new `fqdn` identities introduced by commit 719eb4f - rather than the previously used `cidr` identities. Signed-off-by: Sebastian Wicki <sebastian@isovalent.com>
8e20c34
to
86e48f2
Compare
/test |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
LGTM, only one typo!
This adds a section in the `toFQDNs` troubleshooting guide on how the identity usage can be monitored. It makes use of the metrics added in previous commits. Signed-off-by: Sebastian Wicki <sebastian@isovalent.com>
This adds the upgrade notes for the new ``toFQDNs`` implementation. It mentions upgrade impact and the new metrics added to troubleshoot it. Signed-off-by: Sebastian Wicki <sebastian@isovalent.com>
86e48f2
to
40fd37e
Compare
/test |
This PR:
toFQDNs
implementation fqdn: Improve performance by using selectors as labels #32769)