New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Trace works about enable the ipvs mode for the kube-proxy by default #71202
Comments
/area ipvs |
Are you intending to target 1.14? |
#71596 is related |
ping @Lion-Wei |
Yes, we are!
|
Ok. We need to extensively build out e2e testing for this then. |
cc @kubernetes/sig-testing @kubernetes/sig-cluster-lifecycle @kubernetes/sig-network-feature-requests @kubernetes/sig-architecture-feature-requests for visibility, as this is significant |
IMO we need to create a new tracking issue in https://github.com/kubernetes/enhancements for this, and (maybe) a KEP how this transition will happen smoothly across all clusters, what the tradeoffs/migration steps are, etc. |
If ipv6 is considered #65006 is related also, and hard to fix since the problem is in a vendor library. |
not sure what coverage we have for this currently (had to track it all!), but we definitely need thorough e2e coverage if we're going to flip defaults. FYI @spiffxp |
There are already some test grids for IPVS proxier, they are running all network-sig e2e tests. |
Some of the issues listed (in particular, not working with hostport #66103) have hindered adopting IPVS in clusters at all. Since these weren't included in GA, is there some other maturation window envisioned? |
Given @dghubble's feedback, I'd like to see a KEP for this that includes well-defined graduation criteria. |
Yes, let's make sure we have an absolute 100% feature parity before we switch. Working with ipv6 going forward is also a necessity. A switch of a default is definitely KEP-worthy IMO, after seeing these comments. |
In the ipv4/ipv6 dual-stack kep kubernetes/enhancements#648 ipvs support is still only "nice-to-have". If proxier ipvs is default one may have to "downgrade" to iptables to get dual stack. |
@uablrek Yes, but in ipv6-only cluster ipvs should still work out-of-the-box without a "downgrade" to iptables, right? Also I noticed this fun thing that ipvs is marked as experimental still in the CLI:
|
Greetings! 🏔️ code freeze 🏔️ is coming in about 10 days, is this intented to be implemented in the following 2-3 weeks? |
Hello! Code freeze for 1.14 is coming up in 2 days. Will this be implemented in the next week? Or should we punt until 1.15? |
Sound fair, we can put it to 1.15 cycle. |
/milestone 1.15 |
@soggiest: The provided milestone is not valid for this repository. Milestones in this repository: [ Use In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
/milestone clear |
It must be clearified that proxy-mode=ipvs does not work in an ipv6-only cluster. The support for ipv6 in proxy-mode=ipvs is re-classified as a "feature" in #65006 |
About #71202 (comment), apparently proxy-mode=ipvs was not intended to work with ipv6. |
/remove-sig architecture please re-tag arch if needed, looks like all items fall under sig-network |
Issues go stale after 90d of inactivity. If this issue is safe to close now please do so with Send feedback to sig-testing, kubernetes/test-infra and/or fejta. |
Stale issues rot after 30d of inactivity. If this issue is safe to close now please do so with Send feedback to sig-testing, kubernetes/test-infra and/or fejta. |
/lifecycle frozen |
/area kube-proxy |
So we've been discussing about the evolution of kube-proxy and the maintainability of the modes (IPtables, ipvs, and so on) and we've reached a consensus that we need to evolve the vendoring of kube-proxy logics, modules (also take a look at: https://github.com/kubernetes-sigs/kpng) So right now, talking with other sig-network folks, (@thockin @aojea @jayunit100 @uablrek ) we think this is not a movement we want to do right now (defaulting to IPVS) so I'm closing this issue :) Thanks! /close |
@rikatz: Closing this issue. In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
This issue is to trace the works about make IPVS mode as kube-proxy default mode.
/kind feature
@luxas @timothysc @m1093782566 @bowei @caseydavenport @cmluciano , Please check.
The text was updated successfully, but these errors were encountered: