Table of contents
NSM v1.2.0 is released via a set of example use cases.
NSM v1.2.0 has been successfully integration tested with Kubernetes versions:
Public Cloud Capability
Changes since v1.1.0
Policy Based Routing
NSE’s may now request Policy Based Routing for NSCs that connect to them. This is primarily envisioned to be used to request Source Based routing for the Src IP issued to the NSC by the NSE. This enables routing the return traffic for incoming TCP connections over the vWire back out the vWire without having to necessarily know the full set of prefixes from which such traffic might originate. Various restrictions apply to prevent NSE’s requesting Policy Based Routing that conflicts with K8s Cluster Networking or with other Network Services. See api#119 for more details.
Advanced Healing Cases
NSM v1.2.0 is now in testing with advanced healing examples including simultaneous failure of two components.
Open Telemetry Integration
NSM v1.2.0 now provides OpenTelemetry Integration including both tracing and Prometheus Metrics.
Interdomain Wireguard Examples
Interdomain examples using Wireguard for IP transport were added.
GKE Compatibility Bug Fixed
As noted in NSM v.1.1.0’s Release Notes, GKE had manifested an odd Netlink IP Neighbor bug with IPv6 in its latest node-version. This issue has since been fixed, and NSM v1.2.0 works fine with up-to-date GKE node-versions.
Exclude prefixes already in use in a Pod by other Network Services
When a Pod requests a Network Service, exclude prefixes now includes not only K8s Cluster prefixes, but also prefixes already in use from previously established connections to other Network Services by that Pod.
Select Forwarder Example
In v1.1.0 NSM introduced the ability to select forwarders based on ‘labels’. v1.2.0 provides an example of that functionality. Try NSM Forwarder Selection
- Registry events serialization rework. It allowed to NSM work correctly in case of death 2 or more components and also huge reduces registry memory allocation (reduces memory allocation 7 times compared with v1.1.1 ).
Table of contents