Skip to content

telekom/das-schiff-network-operator

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

558 Commits
.github
.github
 
 
api/v1alpha1
api/v1alpha1
 
 
cmd
cmd
 
 
config
config
 
 
controllers
controllers
 
 
docker
docker
 
 
docs
docs
 
 
hack
hack
 
 
pkg
pkg
 
 
.gitignore
.gitignore
 
 
.golangci.yml
.golangci.yml
 
 
CODEOWNERS
CODEOWNERS
 
 
CODE_OF_CONDUCT.md
CODE_OF_CONDUCT.md
 
 
CONTRIBUTING.md
CONTRIBUTING.md
 
 
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
NOTICE
NOTICE
 
 
PROJECT
PROJECT
 
 
README.md
README.md
 
 
das-schiff-cra-frr.Dockerfile
das-schiff-cra-frr.Dockerfile
 
 
das-schiff-network-operator.Dockerfile
das-schiff-network-operator.Dockerfile
 
 
das-schiff-nwop-agent-cra-frr.Dockerfile
das-schiff-nwop-agent-cra-frr.Dockerfile
 
 
das-schiff-nwop-agent-hbn-l2.Dockerfile
das-schiff-nwop-agent-hbn-l2.Dockerfile
 
 
das-schiff-nwop-agent-netplan.Dockerfile
das-schiff-nwop-agent-netplan.Dockerfile
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 

Repository files navigation

network-operator

Kubernetes

With our BGP-EVPN to the host architecture, network-operator is responsible for the configuration and monitoring of the host router according to the specified declarative state.

The project provides five components:

  • One central operator, taking in desired state and deriving config revisions out of it. Further it controls the gradual rollout of the revisions. This is achieved by generating the NodeNetworkConfig and NodeNetplanConfig resources for each node, waiting for them to be provisioned successfully and then choosing the next node.
  • A set of "agents" running as DaemonSets:
    • agent-cra-frr: Reading the NodeNetworkConfig for the respective node it is running on. It is responsible for configuring the so called Containerized Routing Agent (CRA) of FRR.
    • agent-netplan: Taking the NodeNetplanConfig and applying it to the host network namespace.
    • agent-hbn-l2: This is an alternative to agent-netplan, providing a very simple binary to apply the needed configuration, a subset of the netplan functionality and spec.
  • The containerized routing agent (CRA), providing FRR and a small cra-frr configuration binary. This exposes an API to dynamically configure L2 and L3VNIs and reconfigure FRR.

schematic diagram of cra-frr and the host ns

Deploying the operator

There are two possibilities to deploy the operator:

  1. Run everything through Kubernetes, providing BGP-EVPN services to an existing cluster
  2. Start cra-frr as a standalone container during provisioning and deploy the other components later with Kubernetes.
WIP

License

This project is licensed under Apache License Version 2.0.

Copyright (c) 2022-2025 Deutsche Telekom AG.

Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License.

You may obtain a copy of the License at https://www.apache.org/licenses/LICENSE-2.0.

Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the LICENSE for the specific language governing permissions and limitations under the License.

About

Configure netlink interfaces, simple eBPF filters and FRR using Kubernetes resources.

Topics

das-schiff

Resources

Readme

License

Apache-2.0 license

Code of conduct

Code of conduct
Activity
Custom properties

Stars

35 stars

Watchers

9 watching

Forks

2 forks
Report repository

Releases 21

v0.2.14 Latest
Feb 20, 2025
+ 20 releases

Packages

 
 
 

Contributors 8

Languages