Shulou(Shulou.com)06/01 Report--

Hi! Welcome to the Tungsten Fabric and Kubernetes integration guide series. This article describes the preparations for the deployment of the K8s and Tungsten Fabric components, as well as the initial state of the operation.

The Tungsten Fabric and K8s integration guide series, presented by the TF Chinese community, is designed to help you understand the basics of Tungsten Fabric and K8s integration. If you have any experience or problems in the relevant deployment, please feel free to contact us.

Note: part of the content of the article involves "Contrail". The original name of Tungsten Fabric is OpenContrail and the commercial version is Juniper Contrail.

1 Environmental demand

2 deployment Architectur

Management network: for node management, initialization system, package installation, etc.

Control Network: data interaction between Kubernetes components and Tungsten Fabric components

3 deployment steps

4 initial state of the cluster

Initial state of K8s cluster

After K8s is successfully deployed, the namespaces,deployment,service created by default and the node information of K8s are shown in the screenshot below:

Tungsten Fabric initial state

Resource mapping: K8s and Tungsten Fabric

First of all, Tungsten Fabric will create the corresponding project based on the namespaces in K8s. Because there are four namespace in K8s, Tungsten Fabric automatically creates four new projects, as shown below.

Tungsten Fabric will create a corresponding Firewall Rules based on namespaces. The default rule is to allow all of them to pass. If there is a new namespaces, then Tungsten Fabric will automatically add two Firewall Rules.

Tungsten Fabric automatically creates three IPAM, which specifies the network segment used by pod and service by default for K8s, and these IPAM are bound to the virtual network under the default-domain-> k8s-default project.

Tungsten Fabric creates three Policies by default, where k8s-default-service-np is the service segment that allows the specified network to access K8s.

Initially, there will be two virtual networks in the k8s-default project, one for pod and one for service, and the corresponding IPAM and Policies will be bound.

The service in K8s corresponds to the Load Balancing in Tungsten Fabric.

(the writer is from Shenzhen Tianyuan Jingyun Technology Co., Ltd.)

Tungsten Fabric+K8s is easy to get started with articles.

Part I: TF Carbide Evaluation Guide-preparation

Part 2: basic application connections through Kubernetes services

Part 3: advanced external application connections through Kubernetes Ingress

Part IV: preliminary application isolation through Kubernetes namespaces

Part V: application differential Segmentation through Kubernetes Network Strategy

Follow Wechat: TF Chinese Community

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.