Migrating from OpenshiftSDN to OVNKubernetes CNI

-

APIs involved in this migrations are:

  • Network.operator.openshift.io

  • Network.config.openshift.io


Operators involved in this migrations are:

  • Cluster Network Operator (CNO)

  • Machine Config Operator (MCO)


Refer to pre-requisite steps here, jotted in another post. Update to latest compatible z-stream

With that taken care, proceed below.


1> Backup existing cluster network config:

    # oc get Network.config.openshift.io cluster -o yaml > cluster-openshiftSDN.yaml


2> Verify that OVN_SDN_MIGRATION_TIMEOUT environment variable is set and is 

equal to 0s.


3> Set the migration value to null in CNO object cluster:

        

     # oc patch Network.operator.openshift.io cluster --type='merge' --patch '{"spec":{"migration":null}}'



At this time,


CNO updates status of Network.config.openshift.io CR named cluster
accordingly.


MCO rolls out an update to systemd configuration necessary for OVNK, single machine per pool 

at a time in series. So time taken is proportionate to size of clusters and number of nodes in it.


4> Delete the openshiftSDN NNCP resource on primary network interface:


        # oc get nncp


        NAME STATUS REASON

    bondmaster0 Available SuccessfullyConfigured


        # oc delete nncp bondmaster0


5> Set Migration field to “networkType: OVNKubernetes” in CNO 

object cluster:


        oc patch Network.operator.openshift.io cluster 

        --type='merge' 

        --patch '{

        "spec": 

        { "migration": 

        { "networkType":"OVNKubernetes"

        } } }'


At this time, CNO


  • Destroys the openshift SDN control plane pods.

  • Deploys OVNK control plane pods.

  • Updates the Multus daemon sets and config map objects to 

           reflect new CNI plugin.


6> Check the reboots of nodes have finished, post upgrade belonging to MCP pools, by running:


        # oc get mcp


     Status for Nodes in MCP group should be showing 'READY'


7> Check all cluster operators are avialable :


              # oc get co


8> Following parameters can be customized per needs:


       # oc patch Network.operator.openshift.io cluster 

                --type=merge 

        --patch 

                '{          

                    "spec":

                    { "defaultNetwork": { "ovnKubernetesConfig":  

                    { "mtu":<mtu>, 

                       "genevePort":<port>,             

                       "v4InternalSubnet":"<ipv4_subnet>",           

                      "v6InternalSubnet":"<ipv6_subnet>"            

                }}}}'


9> Disable few features from OpenshiftSDN, that mght have been used earlier and not supported

by OVNK.


# oc patch Network.operator.openshift.io cluster 

                --type='merge'                    

                --patch                           

                '{                                

                "spec":                            

                { "migration":                         

                { "networkType": "OVNKubernetes", " 

                features": {                        

                    "egressIP": false,               

                    "egressFirewall": false,         

                    "multicast": false               

                } } } }'    

Comments

Post a Comment

Popular posts from this blog

VLAN External Network in Openshift using NMState Operators and Multus

-
Image
NMstate operators and Multus CNI provide us with plugins and APIs, to set up external network in openshift container ecosystem. Let us see how we can implement a external VLAN networking for certain pods/VMs apart from, pods/VMs using internal cluster networking. When we install NMState operator, it avails us 3 different APIs, namely: Node Network Configuration Policy : Node level network settings implementation.          # oc get nncp Node Network State : The current state of node network is stored in this.         # oc get nns/<node-name> Node Network Configuration Enactment : The status of NNCP implementation across cluster nodes, is checked in this object.         # oc get nnce Network Attachment Definition (NAD) : Apart from above APIs, we will also make use of NAD from multus CNI plugin framework. This implements namespaced object that exposes existing layer 2 network dev...
Read more

Updating Z-stream of version in Openshift Container Platform

-
Whenever we want to upgrade the OCP to next recommended upgrade path, we want to first move to latest patch version of major and minor version of OCP we are running. For instance, if your Openshift is version 4.15.11 (x.y.z) then, Major (x) version is 4, Minor (y) version is 15 and patch (z) version is 11. First update the master/control node and then worker nodes. The worker nodes in case of update can differ from control node by y-2. This allows to plan for update in large clusters that is staggered across in time. With that bit cleared let us see the procedure to update the z version of OCP version. 1> Just run following to lists the compatible update releases # oc adm upgrade Or run below to see available updates, # oc adm upgrade --include-not-recommended Note: Always consult the OSUS upgrade Graph for valid path upgrades 2> After having made the decision, considering impact of updates on existing set-up, go ahead and update the control node. # oc adm upgrade --to=4.15.3...
Read more