Skip to content

ThomasK33/network-bandwidth-annotation-manager

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

68 Commits

.github

.github

 
 

.vscode

.vscode

 
 

deployments

deployments

 
 

docs

docs

 
 

examples

examples

 
 

src

src

 
 

.dockerignore

.dockerignore

 
 

.editorconfig

.editorconfig

 
 

.gitignore

.gitignore

 
 

.trivyignore

.trivyignore

 
 

Cargo.lock

Cargo.lock

 
 

Cargo.toml

Cargo.toml

 
 

Dockerfile

Dockerfile

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

about.hbs

about.hbs

 
 

about.toml

about.toml

 
 

deny.toml

deny.toml

 
 

devspace.yaml

devspace.yaml

 
 

devspace_start.sh

devspace_start.sh

 
 

justfile

justfile

 
 

mkdocs.yml

mkdocs.yml

 
 

Repository files navigation

Network Bandwidth Annotation Manager

The network bandwidth annotation manager is a dynamic admission controller for Kubernetes setting a pod's network bandwidth annotations using its resource requests, stripping extended resources, and optionally changing a pod's scheduler.

The primary motivation behind creating NBAM is the ability to use [extended resources|extended resource] FQDNs in pod resource requests and limits, as many helm charts or other packaged Kubernetes deployments do not allow setting custom pod annotations, as required by the CNI spec. Yet, one can usually set CPU and memory limits in helm charts or Kubernetes primitives. Thus nbam takes care of rewriting those to the corresponding pod annotations in multiple modes.

Features

By adding specific labels to namespaces or pods, NBAM mutates pod definitions accordingly to the selected mutation mode.

These mutations occur before the object's persistence by the apiserver. Thus, the kube-scheduler and CNI can use the object without further changes.

One can find a mutation mode and feature overview in the project documentation's feature section.

Build

Pre-built OCI images

One can find pre-built OCI images in the project's package section, with the controller available here.

OCI

One can create the OCI image using the following:

docker build -t nbam:latest "."

Binary

One can build a release binary using the following:

cargo build --release

Usage

CLI usage

network-bandwidth-annotation-manager --listen 0.0.0.0:8443 --tls-cert ./cert.pem --tls-key ./key.pem

Kubernetes Deployment

The following example of a Kubernetes deployment assumes one installed cert-manager and its webhook correctly.

One can find an example deployment at deployments/manager.yaml.

Example

A prerequisite for setting up a local development environment is installing k3d, tilt, and just locally.

By running the following, one will create a local environment consisting of a customized k3d-managed registry, k3d multi-server cluster, and tilt:

just run

To add networking-related node capacities and allocatable amounts, open a new shell instance, leaving the previous one open, and run the following:

just annotate-nodes

One can then inspect all resources and allocations using, e.g., kubectl-view-allocations.

kubectl view-allocations

To apply all examples listed above, one should use the following:

just apply-examples

To stop the local development environment, one should run the following:

just stop

Contributing

Documentation

To generate the license file, followed by mkdocs serve, one can run the following:

just docs

About

A dynamic admission controller for Kubernetes setting a pod's network bandwidth annotations using its resource requests

thomask33.github.io/network-bandwidth-annotation-manager/

Topics

kubernetes networking cni network-bandwidth mutating-webhook mutating-admission-webhook

Resources

Readme

License

MIT license
Activity

Stars

1 star

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages 1

 

Contributors 2

  •  
  •  

Languages