Friday, 2021-06-04

« Thursday, 2021-06-03 Index Saturday, 2021-06-05 »
*** horie has joined #openstack-meeting00:29
*** horie has quit IRC00:52
*** benj_ has quit IRC01:37
*** yamak16 has joined #openstack-meeting01:59
*** benj_ has joined #openstack-meeting02:00
*** carloss has quit IRC03:15
*** manpreetk has quit IRC03:52
*** kota_ has joined #openstack-meeting03:58
*** abhishekk has joined #openstack-meeting05:11
*** abhishekk is now known as akekane|home05:12
*** ralonsoh has joined #openstack-meeting05:30
*** manpreetk has joined #openstack-meeting05:32
*** slaweq_ has joined #openstack-meeting06:00
*** slaweq_ has quit IRC06:03
*** slaweq_ has joined #openstack-meeting06:03
*** jbadiapa_ is now known as jbadiapa06:09
*** jbadiapa has joined #openstack-meeting06:09
*** soniya29 has joined #openstack-meeting06:21
*** soniya29 has quit IRC06:22
*** soniya29 has joined #openstack-meeting06:25
*** soniya29 has quit IRC06:25
*** soniya29 has joined #openstack-meeting06:26
*** soniya29 has quit IRC06:50
*** kota_ has quit IRC06:54
*** soniya29 has joined #openstack-meeting06:55
*** rpittau|afk is now known as rpittau07:05
*** tosky has joined #openstack-meeting07:23
*** slaweq_ has quit IRC07:41
*** akekane|home has quit IRC07:41
*** slaweq_ has joined #openstack-meeting08:05
*** slaweq_ has quit IRC08:11
*** soniya29 has quit IRC08:57
*** masazumi_ota has quit IRC10:14
*** yamak16 has quit IRC10:21
*** soniya29 has joined #openstack-meeting10:28
*** carloss has joined #openstack-meeting10:30
*** armstrong has joined #openstack-meeting11:11
*** armstrong has quit IRC11:20
*** soniya29 has quit IRC11:22
*** isabek has joined #openstack-meeting11:22
*** armstrong has joined #openstack-meeting11:22
*** osmanlicilegi has quit IRC11:38
*** cgoncalves has quit IRC11:59
*** osmanlicilegi has joined #openstack-meeting12:00
*** cgoncalves has joined #openstack-meeting12:01
*** armstrong has quit IRC12:08
*** osmanlicilegi has quit IRC12:11
*** armstrong has joined #openstack-meeting12:21
*** obondarev has joined #openstack-meeting12:24
*** armstrong has quit IRC12:35
*** osmanlicilegi has joined #openstack-meeting12:35
*** osmanlicilegi has quit IRC12:46
*** soniya29 has joined #openstack-meeting12:52
*** osmanlicilegi has joined #openstack-meeting12:55
*** cgoncalves has quit IRC13:14
*** cgoncalves has joined #openstack-meeting13:15
*** rpittau is now known as rpittau|afk13:37
*** armstrong has joined #openstack-meeting13:43
*** abhishekk has joined #openstack-meeting13:44
*** armstrong_007 has joined #openstack-meeting13:49
*** slaweq has joined #openstack-meeting13:50
*** ddddd has joined #openstack-meeting13:51
*** armstrong_007 has quit IRC13:52
*** armstrong is now known as Guest85113:53
*** armstrong has joined #openstack-meeting13:53
*** ivc_ has joined #openstack-meeting13:54
*** armstrong has quit IRC13:56
*** Guest851 is now known as armstrong13:58
*** armstrong is now known as Guest85213:58
*** Guest852 is now known as armstrong13:59
slaweq#startmeeting neutron_drivers14:01
opendevmeetMeeting started Fri Jun  4 14:01:26 2021 UTC and is due to finish in 60 minutes.  The chair is slaweq. Information about MeetBot at http://wiki.debian.org/MeetBot.14:01
opendevmeetUseful Commands: #action #agreed #help #info #idea #link #topic #startvote.14:01
opendevmeetThe meeting name has been set to 'neutron_drivers'14:01
ralonsohhi14:01
slaweqhi14:01
ivc_o/14:01
obondarevhi14:01
amotokihi14:01
slaweqlet's wait few minutes for mlavalle, haleyb, njohnston and yamamoto14:02
njohnstono/14:02
haleybhi, sorry i'm late14:03
slaweqok, I think that mlavalle and yamamoto are not connected to irc for now14:04
slaweqso we can probably start14:04
slaweq#topic RFEs14:04
slaweqwe have 1 new RFE to discuss today14:04
slaweqhttps://bugs.launchpad.net/neutron/+bug/193020014:05
opendevmeetLaunchpad bug 1930200 in neutron "[RFE] Add support for Node-Local virtual IP" [Wishlist,New]14:05
slaweqit is proposed by Ilya and (probably) obondarev, right?14:05
ivc_yes14:05
obondarevyep14:05
ivc_Hi. My name is Ilya Chukhnakov. I’m the leader of Cloud Technologies Research Team at Advanced Software Technology Lab of Huawei.14:06
ivc_Oleg Bondarev and Mamatisa Nurmatov are the other 2 members of this team working on OpenStack projects (and we have other members working on Kubernetes).14:06
ivc_We are currently working on a feature for OpenStack Neutron that we internally named Node-Local IP. We would like to share it with the community.14:06
ivc_The RFE is available here: https://bugs.launchpad.net/neutron/+bug/193020014:06
opendevmeetLaunchpad bug 1930200 in neutron "[RFE] Add support for Node-Local virtual IP" [Wishlist,New]14:06
ivc_We are currently working on a detailed specification for this feature. We plan to describe multiple options/variants for various parts of the feature as part of  the spec (from API, UX and backend perspective) so we can discuss these options during the review process and choose the best solution. Please let me know if you have any questions.14:06
ivc_(done copy-pasting)14:06
obondarev:D14:07
slaweqthx ivc_ for the introduction14:07
slaweqI see that there are some questions from amotoki in the launchpad14:07
amotokiyeah, I added small comments just before the meeting as I thought it may be starting points.14:08
ralonsohsorry but I still don't see the usecase for this RFE14:09
ivc_do you want me to answer those questions here?14:09
slaweqivc_ yes, please14:09
slaweq:)14:09
*** manub has joined #openstack-meeting14:10
ivc_our current main use-case for this feature is a per-nod distributed caching service14:10
ivc_for large clouds where centralized caches with multiple nodes might not be enough14:11
ivc_one such example is caching Docker registry - a side-car proxy+cache that optimizes the delivery of container images to K8s worker nodes (VMs)14:11
slaweqamotoki regarding Your question, I'm not sure if I understand it really, what routing You want to have there? Isn't that proposal related to the single L2 network?14:12
ivc_without such per-node cache each worker node would have to connect to central registry (or centralized cache) and consume traffic14:12
ralonsohso you need to have a replica in each node14:12
ivc_with per-node side-car cache we can save on data transfer and improve delivery speed14:12
ralonsohand each replica will have a local IP14:13
ralonsohand you want this IP to be the same in each node?14:13
ivc_yes14:13
ralonsohof course, this IP no accesible14:13
obondarevralonsoh, maybe not on all nodes14:13
amotokislaweq: I am not sure the proposal is limited to a single L2 network or not.14:13
ivc_in a sense it's similar to metadata-proxy.and 169.254.169.254 address14:13
haleybsounds a little like the metadata IP, which is a distributed thing in OVN14:14
ralonsohright14:14
ivc_yes that's right14:14
ralonsohivc_, what about amotoki's question?14:14
*** soniya29 has quit IRC14:14
ivc_ralonsoh amotoki regarding the 'default' route we have several options14:15
ivc_I'll go into more detail in a spec. but can cover briefly14:15
ivc_one option is to have such a default route (and maybe attach it to floating ip)14:15
*** lajoskatona1 has joined #openstack-meeting14:16
ivc_another option would be to later expand the feature and instead of it being strictly 'local' to the node make it more like topology-aware load-balancer14:16
lajoskatona1Hi14:17
ivc_but the topology-aware use case is out of the scope of the initial version (as it is too complicated) and we would like to start with just a local one14:17
slaweqhi lajoskatona1 :)14:17
ralonsohso far, for me this is more like a floating "fixed_ip" with DVR14:18
ivc_sort of14:18
obondarevbut without keepalived14:18
slaweqI'm still not sure if I understand that correct14:18
slaweqin the LP You wrote that Port-C-Src will not reach any destination14:19
slaweqis that a must? or it not exactly, just kind of "side effect"?14:19
ivc_it's not a "must" but imho the most reasonable 'default behavior'14:19
obondarevas suggested by amotoki we can have a default route, and Port-C-Src could go to a remote resource with same IP14:20
obondarevits optional14:20
njohnstonso is the key benefit of this proposal the predictable addressing, so that rather than engage in some kind of discovery you can always know that 127.1.0.1 is the sidecar CDN service?  Or is it making sure instance-to-sidecar traffic doesn't leave the local node?14:20
slaweqok14:20
ivc_njohnston yes14:21
slaweqso core of this RFE is to block traffic send to such Local-IP-address so it will not go outside br-int for sure14:21
slaweqright14:21
slaweq?14:22
ivc_for the 127.1.0.1, except we plan to use a different ip range :)14:22
*** manpreetk has quit IRC14:22
amotokiI agree 'default' behavior is an option. we can choose either. more important point is an IP address resolution inside a node.14:22
amotoki(as slaweq mentioned above)14:22
obondarevI would say key benefit is performance14:22
obondarevblocking traffic from other nodes is more a side effect14:23
obondarevkey point is to have API resource for such address14:23
njohnstonivc_: Sorry to quibble but you said yes to an “or” question. Does that mean the latter option, or does it mean both?14:23
obondarevand guarantee local-node performance14:23
obondarevnjohnston, I think yes was for first one14:24
njohnstonthanks for the clarification14:24
obondarev""the predictable addressing, so that rather than engage in some kind of discovery you can always know that 127.1.0.1 is the sidecar CDN service14:24
ivc_njohnston sorry, i tried to clarify later :) i meant the first one - the 127.1.0.1, but we do not want to use 127.0.0.0/8 network for such IPs14:24
ivc_a better example would be 169.254.169.254 (metadata-proxy)14:25
obondarevusability should be similar to current Floating IP flow14:25
njohnstonunderstood14:25
obondarevmeaning transparency14:25
ivc_but ideally we'd like to be able to use address from regular neutron subnets too14:26
ivc_and not limit it to hard-coded well-known network ranges14:26
amotokiivc_: is "well-known network ranges" a loopback network address like 127.0.0.0/8?14:27
amotoki^ is just for confirmation14:28
ivc_amotoki yes, but to clarify - ideally we want to be able to use arbitrary addresses for Node-Local IP (e.g. such as 10.10.10.10)14:29
ivc_and we want to be able to create multiple such IPs and assign it to different VM groups14:29
amotokiivc_: thanks. I believe what you would like to achieve. it is just to clarify the wording.14:29
amotokis/I believe/I believe I understand/14:30
njohnstonwould this be a subnet of such IPs or would you do this on a per-IP basis? For example if not constrained to a specific subnet you had cdn.example.org on 10.10.10.10 and all hosts go directly but you could drop in a sidecar and transparently hijack traffic to that IP and redirect to a local cache.14:31
njohnstonbut that could be really hard to debug when there are issues.14:31
ivc_njohnston we'd like Node-Local IP to behave similar to current Floating IP - i.e. the creation of NodeLocalIP would be restricted to only allowed ranges14:33
ivc_from the API perspective we expect it to behave similar to current Floating IPs14:34
njohnstonok14:34
ivc_in fact that's part of this RFE's core - to have a new API resource type that can be used to assign such IPs to groups of VMs14:35
amotokido an IP address of a VM and Node-Local IP belong to a same subnet?14:35
slaweqwhat about MAC address, will it have some "common" MAC which will be configured on all vms which have this IP?14:36
slaweqor will it work on different MAC on each vm?14:36
haleyband what about IPv6?14:36
obondarevamotoki, not restricted to a single subnet14:37
obondarevsame*14:37
amotokiobondarev: so, traffic is routable (like local traffic of DVR) right?14:38
haleybi'm also interested in the possible overlap with octavia, just don't have a firm grasp yet on how it would/should work with this14:38
ivc_slaweq that decision is still WIP - there are several options, e.g. we can implement NodeLocalIP as L2 feature. in that case we think MAC can be randomly generated for each IP, but same MAC would be used for same IP on different nodes14:38
obondarevamotoki, not exactly, traffic never goes out br-int14:38
ivc_another option would be to make NodeLocalIP an L3 feature (but not routable) similar to current 169.254.169.254 address translation14:39
* haleyb has to leave for appt, but will read transcript later14:39
obondarevamotoki, it's more a form of NAT14:39
ivc_we would like to describe both of these options in a spec and decide on the best option during the review14:39
haleybwe don't do NAT with IPv6 right now...14:40
obondarevhaleyb, it's not exactly NAT, it's on flow level14:40
*** gmann is now known as gmann_afk14:40
amotokiobondarev: I wonder if it is L2 thing or L3 thing. NAT is a kind of L3 thing and traffic is L3-routed.14:40
amotokiobondarev: that's confuses me .....14:40
obondarevOVN's localport is similar thing14:41
obondarevamotoki, no routing, L214:41
ivc_haleyb re:octavia that's very understandable. in a sense Node-Local IP can be seen as a limited load-balancer, except instead of balancing it always directs traffic to local single predefined VM14:42
amotokiobondarev: I am not sure I understand it correctly. NodeLocal-IP can belong to a different subnet from a subnet which an IP of a VM belongs to... I am okay others already understand it correctly though.14:43
ivc_haleyb we also think that this feature might in fact at some point benefit Octavia - it can simplify the creation of distributed loadbalancer with load-balance-at-source pattern14:43
ivc_haleyb similar to how Kubernets' Istio project works14:44
ivc_@all do you think that would be easier to discuss this feature if we share the spec draft for it?14:46
slaweqivc_ I think that we will need to discuss details in the spec's review14:47
slaweqbut in overall I'm ok with that RFE as an idea, so I'm +1 for approving it14:47
ralonsoh+1 to the RFE14:48
njohnston+114:48
njohnstonI can definitely see beneficial use cases14:48
amotokiI am okay with the idea itself (optimizing such thing as the neturon level)14:48
amotokieven if it is a flow-level, it emmulates existing L2/L3 behavior (when we see it from a VM perspective), so I am confused with "it's a flow-lvel"....14:48
amotokibut i believe it will be clarified in a discussion in the spec review.14:49
obondarevamotoki, correct, I meant emulation14:49
obondarevtransparent to user/VM14:49
obondarevamotoki, sorry for confusion14:50
slaweqok, so I'm going to mark the rfe as approved and we will wait for the spec to review14:50
ivc_ok, thanks!14:50
slaweqthx all for the discussion today14:50
obondarevthanks everyone14:50
amotokiobondarev: no problem. the wording is always difficult :)14:50
obondarevamotoki, right :)14:50
slaweqthat was the only RFE for today14:50
slaweqso we are (almost) done for today14:50
slaweqone last thing - please remember that next week's meeting will be in the #openstack-neutron channel14:51
slaweqhave a great weekend and see You all online next week o/14:51
ralonsohbye!14:51
njohnstono/14:51
amotokio/14:51
*** njohnston has left #openstack-meeting14:51
manubbye14:51
obondarevo/14:51
slaweq#endmeeting14:51
lajoskatona1bye14:51
opendevmeetMeeting ended Fri Jun  4 14:51:50 2021 UTC.  Information about MeetBot at http://wiki.debian.org/MeetBot . (v 0.1.4)14:51
opendevmeetMinutes:        http://eavesdrop.openstack.org/meetings/neutron_drivers/2021/neutron_drivers.2021-06-04-14.01.html14:51
opendevmeetMinutes (text): http://eavesdrop.openstack.org/meetings/neutron_drivers/2021/neutron_drivers.2021-06-04-14.01.txt14:51
opendevmeetLog:            http://eavesdrop.openstack.org/meetings/neutron_drivers/2021/neutron_drivers.2021-06-04-14.01.log.html14:51
toskyouch, I can't easily spy on your meetings anymore, I'd need to joint another channel :)14:52
amotokitosky: that's an side-effect :)14:52
ivc_bye14:52
*** ivc_ has quit IRC14:53
*** lajoskatona1 has left #openstack-meeting14:54
*** ddddd has quit IRC14:54
*** isabek has left #openstack-meeting14:57
*** manub has quit IRC15:00
*** armstrong is now known as Guest86615:07
*** armstrong has joined #openstack-meeting15:07
*** gmann_afk is now known as gmann15:13
*** obondarev has quit IRC15:38
*** akekane_ has joined #openstack-meeting16:44
*** abhishekk has quit IRC16:44
*** ralonsoh has quit IRC16:47
*** abhishekk has joined #openstack-meeting16:51
*** akekane_ has quit IRC16:52
*** armstrong has quit IRC17:00
*** abhishekk has quit IRC17:22
*** armstrong has joined #openstack-meeting17:26
*** armstrong has quit IRC17:44
*** Guest866 has quit IRC19:01
*** armstrong has joined #openstack-meeting19:28
*** armstrong has quit IRC20:08
*** gmann is now known as gmann_afk21:51
*** tosky has quit IRC22:01
*** armstrong has joined #openstack-meeting23:30
*** carloss has quit IRC23:52
« Thursday, 2021-06-03 Index Saturday, 2021-06-05 »

Generated by irclog2html.py 2.17.2 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!