terway | CNI plugin for Alibaba Cloud VPC/ENI | Networking library
kandi X-RAY | terway Summary
kandi X-RAY | terway Summary
terway is a Go library typically used in Networking applications. terway has no bugs, it has no vulnerabilities, it has a Permissive License and it has low support. You can download it from GitHub.
CNI plugin for Alibaba Cloud VPC/ENI.
CNI plugin for Alibaba Cloud VPC/ENI.
Support
Quality
Security
License
Reuse
Support
terway has a low active ecosystem.
It has 479 star(s) with 138 fork(s). There are 16 watchers for this library.
It had no major release in the last 12 months.
There are 9 open issues and 57 have been closed. On average issues are closed in 122 days. There are 5 open pull requests and 0 closed requests.
It has a neutral sentiment in the developer community.
The latest version of terway is v1.4.4
Quality
terway has no bugs reported.
Security
terway has no vulnerabilities reported, and its dependent libraries have no vulnerabilities reported.
License
terway is licensed under the Apache-2.0 License. This license is Permissive.
Permissive licenses have the least restrictions, and you can use them in most projects.
Reuse
terway releases are available to install and integrate.
Installation instructions, examples and code snippets are available.
Top functions reviewed by kandi - BETA
kandi's functional review helps you automatically verify the functionalities of the libraries and avoid rework.
Currently covering the most popular Java, JavaScript and Python libraries. See a Sample of terway
Currently covering the most popular Java, JavaScript and Python libraries. See a Sample of terway
terway Key Features
No Key Features are available at this moment for terway.
terway Examples and Code Snippets
No Code Snippets are available at this moment for terway.
Community Discussions
Trending Discussions on terway
QUESTION
Alibaba Cloud - Kubernetes to RDS how to limit whitelist?
Asked 2020-Jul-21 at 18:46
In Alibaba Cloud, I have a managed Kubernetes cluster and a MySQL RDS in the same VPC (the RDS endpoint is internal), and Kubernetes pods can reach to the RDS port 3306 just fine when the whitelist contains 0.0.0.0/0. I'd like to limit that to the Kubernetes pods CIDRs.
The Kubernetes nodes and pods are of a 10.0.0.0/16 range (e.g 10.2.220.118). There are 3 v-switches and 3 terway v-switches in the VPC, where the node vswitch_cidrs are:
...ANSWER
Answered 2020-Jul-21 at 18:46well, it was 10.1.0.0/8 , after all
Community Discussions, Code Snippets contain sources that include Stack Exchange Network
Vulnerabilities
No vulnerabilities reported
Install terway
After setup kubernetes cluster. Make sure cluster up and healthy by kubectl get cs.
Prepare Aliyun ECS instance. The ECS OS we tested is Centos 7.4/7.6.
Install Kubernetes via kubeadm: create-cluster-kubeadm
Change iptables Forward default policy to ACCEPT on every node of cluster: iptables -P FORWARD ACCEPT.
Check the rp_filter in sysctl parameters, set them to "0" on every node of cluster.
ENI Secondary IP Mode. Terway requires the access_key have following RAM Permissions. Using kubectl get ds terway -n kube-system to watch plugin launching. Plugin install completed while terway daemonset available pods equal to nodes.
VPC Mode VPC Mode, Using `Aliyun VPC` route table to connect the pods. Can assign dedicated ENI to Pod. Install method: <br /> Replace `Network` and `access_key/access_secret` in [terway.yml](./terway.yml) with your cluster pod subnet and aliyun openapi credentials. Then use `kubectl apply -f terway.yml` to install Terway into kubernetes cluster.
ENI Secondary IP Mode ENI Secondary IP Mode, Using `Aliyun ENI's secondary ip` to connect the pods. This mode not limited by VPC route tables quotation. Install method: <br /> Replace `access_key/access_secret` and `security_group/vswitches` in [terway-multiip.yml](./terway-multiip.yml) with your aliyun openapi credentials and resources id. Then use `kubectl apply -f terway-multiip.yml` to install Terway into kubernetes cluster.
Docker >= 17.05 with multi-stage build
Prepare Aliyun ECS instance. The ECS OS we tested is Centos 7.4/7.6.
Install Kubernetes via kubeadm: create-cluster-kubeadm
Change iptables Forward default policy to ACCEPT on every node of cluster: iptables -P FORWARD ACCEPT.
Check the rp_filter in sysctl parameters, set them to "0" on every node of cluster.
ENI Secondary IP Mode. Terway requires the access_key have following RAM Permissions. Using kubectl get ds terway -n kube-system to watch plugin launching. Plugin install completed while terway daemonset available pods equal to nodes.
VPC Mode VPC Mode, Using `Aliyun VPC` route table to connect the pods. Can assign dedicated ENI to Pod. Install method: <br /> Replace `Network` and `access_key/access_secret` in [terway.yml](./terway.yml) with your cluster pod subnet and aliyun openapi credentials. Then use `kubectl apply -f terway.yml` to install Terway into kubernetes cluster.
ENI Secondary IP Mode ENI Secondary IP Mode, Using `Aliyun ENI's secondary ip` to connect the pods. This mode not limited by VPC route tables quotation. Install method: <br /> Replace `access_key/access_secret` and `security_group/vswitches` in [terway-multiip.yml](./terway-multiip.yml) with your aliyun openapi credentials and resources id. Then use `kubectl apply -f terway-multiip.yml` to install Terway into kubernetes cluster.
Docker >= 17.05 with multi-stage build
Support
You are welcome to make new issues and pull requests.
Find more information at:
Reuse Trending Solutions
Find, review, and download reusable Libraries, Code Snippets, Cloud APIs from over 650 million Knowledge Items
Find more librariesStay Updated
Subscribe to our newsletter for trending solutions and developer bootcamps
Share this Page
