-
In our current use of Calico's eBPF mode, we have noticed a significant drop in maximum bandwidth—over 50% less compared to when in IPVS mode—for traffic entering the Kubernetes cluster from outside. …
-
I create 2100 services with 2100 external ips and 2100 node ports, about 20000 ipvs rules each node.
it took more than 8 mins to sync a loop,
function syncProxyRules() maybe need to be optimized
-
Solving the issue of running IPVS on Kubernetes on WSL2 (with kube-proxy)
```
$ zgrep -i tables /proc/config.gz
# CONFIG_NF_TABLES_BRIDGE is not set
# CONFIG_BRIDGE_NF_EBTABLES is not set
```
De…
-
### 场景描述
- 双臂`fullnat`模式
- 普通的http服务,客户端异常时候会产生大量类似`syn flood`的包,部分包全部透传到`kni`接口,大概300k pps。导致BGP中断,健康检查出现中断的现象。从代码看到`vip:vport`的流量不应该走到`kni`接口才对
### 复现方法
- 关键是`dpvs.conf`关闭`defence_tcp_d…
-
: It is responsible for routing traffic to the appropriate container based on IP and port number of the incoming request.
Kubernetes network proxy runs on each node. This reflects services as defined…
-
The issue https://github.com/docker-library/postgres/issues/538 introduced a warning in the README about the Docker Swarm IPVS LB that timeouts TCP connections after 900 secs, which is lower than `tcp…
-
https://imroc.cc/tke/faq/install-localdns-with-ipvs/
背景 TKE 对 NodeLocal DNS Cache 进行了产品化支持,直接在扩展组件里面就可以一键安装到集群,参考 NodeLocalDNSCache 扩展组件说明 ,可是仅仅支持 iptables 转发模式的集群,而目前大多集群都会使用 IPVS 转发模式,无法安装这个扩展组件。…
imroc updated
3 years ago
-
### What would you like to be added?
Topology Aware Routing was introduced in https://github.com/kubernetes/kubernetes/pull/99522 and at the time of introduction it was introduced for `iptable` and…
-
### Is there an existing issue for this?
- [X] I have searched the existing issues
### What happened?
In my environment with Kubernetes v1.26.1 I have tested Topology Aware Hints feature.
It looks…
-
Using `IpvsMethod: "masq"` on a Docker host for local container backends is the simplest method in terms of configuration, but it fails at hairpinning: a container connecting to a service with a backe…