Open giobart opened 1 month ago
We can improve the network performance of unikernel bypassing iptables within the network namespace and attaching a macvtap directly to the network interface
Current approach
container net ns ______________________________________ | [host routes] | ___________ | ____________ | | OakBridge | |veth|----|-|veth| |virt bridge| --|tap|--{vm} | |___________| | |___________| | |______________________________________|
proposed approach
container net ns __________________________ | | ___________ | | | OakBridge | |veth|----|-|veth|--|macvtap|--{vm} | |___________| | | |__________________________|
Avoid iptables step inside the network namespace and improve performance
Node net manager
1 week
Implementing
Short
We can improve the network performance of unikernel bypassing iptables within the network namespace and attaching a macvtap directly to the network interface
Proposal
Current approach
proposed approach
Ratio
Avoid iptables step inside the network namespace and improve performance
Impact
Node net manager
Development time
1 week
Status
Implementing
Checklist