DownloadAntrea is a Kubernetes-native project that implements the Container Network Interface (CNI) and Kubernetes NetworkPolicy thereby providing network connectivity and security for pod workloads. Antrea extends the benefit of programmable networks from Open vSwitch (OVS) to Kubernetes. Antrea simplifies Kubernetes networking across differing clouds and operating systems with a unified network stack built atop Open vSwitch. Antrea is designed to ease deployment, operations and troubleshooting by adopting Kubernetes controller patterns and providing diagnostics consumable by tools network operators know and love. With the programmability of Open vSwitch under the hood, Antrea can be extended to support advanced network use cases like kernel bypass and network service mesh.
Features
- Create overlay networks
- Enforce Network Polices
- Improved Network Performance
- Antrea enforces Kubernetes Network Policy API which assigns network traffic filtering rules to pods
- Documentation available
- OVS performs better than iptables, especially as the number of rules increases
Project Samples
