Skip to main content
blog.andreasm.io
  1. Posts/

Antrea - Kubernetes CNI

·328 words·2 mins
Kubernetes Networking CNI Antrea Kubernetes
Andreas Marqvardsen
Author
Andreas Marqvardsen
Always curious, always learning

Antrea Overview

This is an introduction post to Antrea, what it is and which features it has.
For more details head over to:
https://antrea.io/ and https://github.com/antrea-io/antrea

First of, Antrea is a CNI. CNI stands for Container Network Interface. As the world moves into Kubernetes more and more, we need a good CNI to support everything from network to security within Kubernetes. Thats where Antrea comes into play.

Antrea has a rich set of features such as:

  • Kubernetes-native: Antrea follows best practices to extend the Kubernetes APIs and provide familiar abstractions to users, while also leveraging Kubernetes libraries in its own implementation.
  • Powered by Open vSwitch: Antrea relies on Open vSwitch to implement all networking functions, including Kubernetes Service load-balancing, and to enable hardware offloading in order to support the most demanding workloads.
  • Run everywhere: Run Antrea in private clouds, public clouds and on bare metal, and select the appropriate traffic mode (with or without overlay) based on your infrastructure and use case.
  • Windows Node support: Thanks to the portability of Open vSwitch, Antrea can use the same data plane implementation on both Linux and Windows Kubernetes Nodes.
  • Comprehensive policy model: Antrea provides a comprehensive network policy model, which builds upon Kubernetes Network Policies with new features such as policy tiering, rule priorities and cluster-level policies.
  • Troubleshooting and monitoring tools: Antrea comes with CLI and UI tools which provide visibility and diagnostics capabilities (packet tracing, policy analysis, flow inspection). It exposes Prometheus metrics and supports exporting network flow information which can be visualized in Kibana dashboards.
  • Encryption: Encryption of inter-Node Pod traffic with IPsec tunnels when using an overlay Pod network.
  • Easy deployment: Antrea is deployed by applying a single YAML manifest file.

As this blog page evolves, it will cover in more technical posts how to use and configure Antrea with examples. As how this webpage is both handled by Antrea network and security features (yes, this wordpress page is hosted on a native K8s cluster with Antrea as CNI)

Related

Antrea Egress
·3485 words·17 mins
Kubernetes Networking CNI Antrea Kubernetes Tanzu
Antrea Egress: # What is Egress when we talk about Kubernetes?
NSX Advanced LoadBalancer with Antrea on Native K8s
·2352 words·12 mins
Networking LoadBalancing Kubernetes CNI Kubernetes Avi Ako Antrea
This post will cover the steps to bring up a Kubernetes cluster in Ubuntu, then how to install and configure Antrea as CNI and how to install and configure NSX Advanced Load Balancer to use as a servicetype Load Balancer in the k8s environment with the use of Avi Kubernetes Operator.
Exploring some Antrea Features
·6097 words·29 mins
Kubernetes CNI Antrea Antrea Kubernetes Cni
In this post I will go through a couple of Antrea features I find interesting, some new features and some older features