diff --git a/modules/network-observability-SRIOV-configuration.adoc b/modules/network-observability-SRIOV-configuration.adoc index a47021b23284..3dfce32cc316 100644 --- a/modules/network-observability-SRIOV-configuration.adoc +++ b/modules/network-observability-SRIOV-configuration.adoc @@ -6,7 +6,10 @@ [id="network-observability-SR-IOV-config_{context}"] = Configuring monitoring for SR-IOV interface traffic -In order to collect traffic from a cluster with a Single Root I/O Virtualization (SR-IOV) device, you must set the `FlowCollector` `spec.agent.ebpf.privileged` field to `true`. Then, the eBPF agent monitors other network namespaces in addition to the host network namespaces, which are monitored by default. When a pod with a virtual functions (VF) interface is created, a new network namespace is created. With `SRIOVNetwork` policy `IPAM` configurations specified, the VF interface is migrated from the host network namespace to the pod network namespace. +[role="_abstract"] +Configure the `FlowCollector` resource to monitor traffic on Single Root I/O Virtualization (SR-IOV) device by setting the `spec.agent.ebpf.privileged` field to `true`, which enables the eBPF agent to monitor other network namespaces. + +The eBPF agent monitors other network namespaces in addition to the host network namespaces, which are monitored by default. When a pod with a virtual functions (VF) interface is created, a new network namespace is created. With `SRIOVNetwork` policy `IPAM` configurations specified, the VF interface is migrated from the host network namespace to the pod network namespace. .Prerequisites * Access to an {product-title} cluster with a SR-IOV device. diff --git a/modules/network-observability-nodes-taints-tolerations.adoc b/modules/network-observability-nodes-taints-tolerations.adoc index 4460f2e5e403..fc6cba079027 100644 --- a/modules/network-observability-nodes-taints-tolerations.adoc +++ b/modules/network-observability-nodes-taints-tolerations.adoc @@ -6,7 +6,10 @@ [id="network-observability-multi-tenancy_{context}"] = Network observability deployment in specific nodes -You can configure the `FlowCollector` to control the deployment of network observability components in specific nodes. The `spec.agent.ebpf.advanced.scheduling`, `spec.processor.advanced.scheduling`, and `spec.consolePlugin.advanced.scheduling` specifications have the following configurable settings: +[role="_abstract"] +Configure the `FlowCollector` resource using scheduling specifications, including `NodeSelector`, `Tolerations`, and `Affinity`, to control the deployment of network observability components on specific nodes. + +The `spec.agent.ebpf.advanced.scheduling`, `spec.processor.advanced.scheduling`, and `spec.consolePlugin.advanced.scheduling` specifications have the following configurable settings: * `NodeSelector` * `Tolerations` diff --git a/modules/network-observability-virtualization-configuration.adoc b/modules/network-observability-virtualization-configuration.adoc index 2840fd6e16fb..58d40483bcfd 100644 --- a/modules/network-observability-virtualization-configuration.adoc +++ b/modules/network-observability-virtualization-configuration.adoc @@ -6,7 +6,10 @@ [id="network-observability-virtualization-config_{context}"] = Configuring virtual machine (VM) secondary network interfaces for Network Observability -You can observe network traffic on an OpenShift Virtualization setup by identifying eBPF-enriched network flows coming from VMs that are connected to secondary networks, such as through OVN-Kubernetes. Network flows coming from VMs that are connected to the default internal pod network are automatically captured by Network Observability. +[role="_abstract"] +Configure the `FlowCollector` to monitor VM secondary network traffic by setting the eBPF agent to `privileged` mode and defining the indexing for secondary networks, enabling the capture and enrichment of flows from {VirtProductName}. + +Network flows coming from VMs that are connected to the default internal pod network are automatically captured by network observability. .Procedure . Get information about the virtual machine launcher pod by running the following command. This information is used in Step 5: