Skip to content
/ network-bandwidth-annotation-manager Public

A dynamic admission controller for Kubernetes setting a pod's network bandwidth annotations using its resource requests

thomask33.github.io/network-bandwidth-annotation-manager/

License

MIT license
1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

ThomasK33/network-bandwidth-annotation-manager

BranchesTags

Repository files navigation

Network Bandwidth Annotation Manager

The network bandwidth annotation manager is a dynamic admission controller for Kubernetes setting a pod's network bandwidth annotations using its resource requests, stripping extended resources, and optionally changing a pod's scheduler.

The primary motivation behind creating NBAM is the ability to use [extended resources|extended resource] FQDNs in pod resource requests and limits, as many helm charts or other packaged Kubernetes deployments do not allow setting custom pod annotations, as required by the CNI spec. Yet, one can usually set CPU and memory limits in helm charts or Kubernetes primitives. Thus nbam takes care of rewriting those to the corresponding pod annotations in multiple modes.

Features

By adding specific labels to namespaces or pods, NBAM mutates pod definitions accordingly to the selected mutation mode.

These mutations occur before the object's persistence by the apiserver. Thus, the kube-scheduler and CNI can use the object without further changes.

One can find a mutation mode and feature overview in the project documentation's feature section.

Build

Pre-built OCI images

One can find pre-built OCI images in the project's package section, with the controller available here.

OCI

One can create the OCI image using the following:

docker build -t nbam:latest "."

Binary

One can build a release binary using the following:

cargo build --release

Usage

CLI usage

network-bandwidth-annotation-manager --listen 0.0.0.0:8443 --tls-cert ./cert.pem --tls-key ./key.pem

Kubernetes Deployment

The following example of a Kubernetes deployment assumes one installed cert-manager and its webhook correctly.

One can find an example deployment at deployments/manager.yaml.

Example

A prerequisite for setting up a local development environment is installing k3d, tilt, and just locally.

By running the following, one will create a local environment consisting of a customized k3d-managed registry, k3d multi-server cluster, and tilt:

just run

To add networking-related node capacities and allocatable amounts, open a new shell instance, leaving the previous one open, and run the following:

just annotate-nodes

One can then inspect all resources and allocations using, e.g., kubectl-view-allocations.

kubectl view-allocations

To apply all examples listed above, one should use the following:

just apply-examples

To stop the local development environment, one should run the following:

just stop

Contributing

Documentation

To generate the license file, followed by mkdocs serve, one can run the following:

just docs

About

A dynamic admission controller for Kubernetes setting a pod's network bandwidth annotations using its resource requests

thomask33.github.io/network-bandwidth-annotation-manager/

Topics

kubernetes networking cni network-bandwidth mutating-webhook mutating-admission-webhook

Resources

Readme

License

MIT license
Activity

Stars

1 star

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors 2

  •  
  •  

Languages