Cilium: Difference between revisions

From Wizard Rants
Jump to navigation Jump to search
← Older editNewer edit →
VisualWikitext
No edit summary
Undo revision 33 by JohnNorthrup (talk)
Tag: Undo
Line 9: Line 9:
{{Alternating rows table section|es=background:#f0f0f0;
{{Alternating rows table section|es=background:#f0f0f0;
| {{!!}} Connection Tracking {{!!}} node or endpoint {{!!}} 1M TCP/256K UDP {{!!}} Max 1M concurrent TCP connections, max 256K expected UDP answers
| {{!!}} Connection Tracking {{!!}} node or endpoint {{!!}} 1M TCP/256K UDP {{!!}} Max 1M concurrent TCP connections, max 256K expected UDP answers
{{!-}}
| {{!!}} Endpoints {{!!}} node {{!!}} 64k {{!!}} Max 64k local endpoints + host IPs per node
| {{!!}} Endpoints {{!!}} node {{!!}} 64k {{!!}} Max 64k local endpoints + host IPs per node
{{!-}}
| {{!!}} IP cache {{!!}} node {{!!}} 512K {{!!}} Max 256K endpoints (IPv4+IPv6), max 512k endpoints (IPv4 or IPv6) across all clusters
| {{!!}} IP cache {{!!}} node {{!!}} 512K {{!!}} Max 256K endpoints (IPv4+IPv6), max 512k endpoints (IPv4 or IPv6) across all clusters
{{!-}}
| {{!!}} Load Balancer {{!!}} node {{!!}} 64k {{!!}} Max 64k cumulative backends across all services across all clusters
| {{!!}} Load Balancer {{!!}} node {{!!}} 64k {{!!}} Max 64k cumulative backends across all services across all clusters
{{!-}}
| {{!!}} Policy {{!!}} endpoint {{!!}} 16k {{!!}} Max 16k allowed identity + port + protocol pairs for specific endpoint
| {{!!}} Policy {{!!}} endpoint {{!!}} 16k {{!!}} Max 16k allowed identity + port + protocol pairs for specific endpoint
{{!-}}
| {{!!}} Proxy Map {{!!}} node {{!!}} 512k {{!!}} Max 512k concurrent redirected TCP connections to proxy
| {{!!}} Proxy Map {{!!}} node {{!!}} 512k {{!!}} Max 512k concurrent redirected TCP connections to proxy
{{!-}}
| {{!!}} Tunnel {{!!}} node {{!!}} 64k {{!!}} Max 32k nodes (IPv4+IPv6) or 64k nodes (IPv4 or IPv6) across all clusters
| {{!!}} Tunnel {{!!}} node {{!!}} 64k {{!!}} Max 32k nodes (IPv4+IPv6) or 64k nodes (IPv4 or IPv6) across all clusters
}}
}}
|}
|}


{| class="wikitable"
! Place !! Result
{{Alternating rows table section|es=background:#f0f0f0;
| {{!}} First {{!!}} 100
| {{!}} Second {{!!}} 95
| <!-- empty! -->
| {{!}} Third {{!!}} 87
| <!-- empty! -->
| {{!}} Fourth {{!!}} 65
| {{!}} Fifth {{!!}} 58
}}
|}


BPF Map Limitations: https://cilium.readthedocs.io/en/stable/architecture/#bpf-map-limitations
BPF Map Limitations: https://cilium.readthedocs.io/en/stable/architecture/#bpf-map-limitations

Revision as of 05:38, 20 January 2020

Cilium Documentation and Downloads can be found at the Cilium project website.

Flag Options

As the IP addresses used for the cluster prefix are typically allocated from RFC1918 private address blocks and are not publicly routable. Cilium will automatically masquerade the source IP address of all traffic that is leaving the cluster. This behavior can be disabled by running cilium-agent with the option --masquerade=false.

Map Name Scope Default Limit Scale Implications

Template:Alternating rows table section


BPF Map Limitations: https://cilium.readthedocs.io/en/stable/architecture/#bpf-map-limitations

Retrieved from "https://wiki.8bitwizard.net/index.php?title=Cilium&oldid=34"