You are viewing a plain text version of this content. The canonical link for it is here.
Posted to user@mesos.apache.org by Marc Roos <M....@f1-outsourcing.eu> on 2019/12/13 21:39:29 UTC
cni iptables best practice
Is anyone applying iptables rules in their cni networking, and how? I
wrote a iptables chaining plugin but cannot use it because this cni
0.3.0 is still not supported in mesos 1.9. I wondered how this done
currently
RE: cni iptables best practice
Posted by Marc Roos <M....@f1-outsourcing.eu>.
What about if I pay someone of your team privately, maybe want to do a
bit of work at weekends? Maybe you can propose this to members of your
team that have been working on this in the past?
-----Original Message-----
Sent: 05 February 2020 16:51
To: user
Cc: zhq527725; support
Subject: Re: cni iptables best practice
Hi Marc,
CNI3 support is not on Mesosphere's near term roadmap given our other
priorities. But if there's anyone in the community willing to work with
you to develop it, as the Apache Mesos project, we'll be happy to accept
the contribution (of course assuming it adheres to the project's quality
standards).
On Wed, Feb 5, 2020 at 8:57 AM Marc Roos <M....@f1-outsourcing.eu>
wrote:
Is this possible? I would like to start using mesos in production
to be
honest.
-----Original Message-----
Sent: 30 January 2020 18:46
To: Qian Zhang
Cc: user; support@mesosphere.com
Subject: RE: cni iptables best practice
What about when I fund this? How much would it cost? Otherwise I
need to
spend time/money on making a custom cni plugin that is not even
operating via standards.
PS. I do not see the point of getting some external programmer,
that
needs to acquire specific knowledge on this subject first.
-----Original Message-----
Cc: user
Subject: Re: cni iptables best practice
I do not think we plan to do it in short term.
Regards,
Qian Zhang
On Tue, Jan 28, 2020 at 1:54 AM Marc Roos
<M....@f1-outsourcing.eu>
wrote:
Hi Qian,
Any idea on when this cni 0.3 is going to be implemented? I
saw the
issue priority is Major, can't remember if it was always
like this.
But
looks promising.
Regards,
Marc
-----Original Message-----
Sent: 14 December 2019 09:46
To: user
Subject: RE: cni iptables best practice
Yes, yes I know, disaster. I wondered how or even if people
are
using
iptables with tasks. Even on internal environment it could
be nice
to
use not?
Re: cni iptables best practice
Posted by Vinod Kone <vi...@apache.org>.
Hi Marc,
CNI3 support is not on Mesosphere's near term roadmap given our other
priorities. But if there's anyone in the community willing to work with you
to develop it, as the Apache Mesos project, we'll be happy to accept the
contribution (of course assuming it adheres to the project's quality
standards).
On Wed, Feb 5, 2020 at 8:57 AM Marc Roos <M....@f1-outsourcing.eu> wrote:
>
> Is this possible? I would like to start using mesos in production to be
> honest.
>
>
>
> -----Original Message-----
> Sent: 30 January 2020 18:46
> To: Qian Zhang
> Cc: user; support@mesosphere.com
> Subject: RE: cni iptables best practice
>
>
> What about when I fund this? How much would it cost? Otherwise I need to
> spend time/money on making a custom cni plugin that is not even
> operating via standards.
>
> PS. I do not see the point of getting some external programmer, that
> needs to acquire specific knowledge on this subject first.
>
>
>
> -----Original Message-----
> Cc: user
> Subject: Re: cni iptables best practice
>
> I do not think we plan to do it in short term.
>
>
> Regards,
> Qian Zhang
>
>
> On Tue, Jan 28, 2020 at 1:54 AM Marc Roos <M....@f1-outsourcing.eu>
> wrote:
>
>
>
> Hi Qian,
>
> Any idea on when this cni 0.3 is going to be implemented? I saw
> the
>
> issue priority is Major, can't remember if it was always like
> this.
> But
> looks promising.
>
> Regards,
> Marc
>
>
>
>
> -----Original Message-----
> Sent: 14 December 2019 09:46
> To: user
> Subject: RE: cni iptables best practice
>
>
> Yes, yes I know, disaster. I wondered how or even if people are
> using
> iptables with tasks. Even on internal environment it could be nice
> to
> use not?
>
>
>
>
>
RE: cni iptables best practice
Posted by Marc Roos <M....@f1-outsourcing.eu>.
Is this possible? I would like to start using mesos in production to be
honest.
-----Original Message-----
Sent: 30 January 2020 18:46
To: Qian Zhang
Cc: user; support@mesosphere.com
Subject: RE: cni iptables best practice
What about when I fund this? How much would it cost? Otherwise I need to
spend time/money on making a custom cni plugin that is not even
operating via standards.
PS. I do not see the point of getting some external programmer, that
needs to acquire specific knowledge on this subject first.
-----Original Message-----
Cc: user
Subject: Re: cni iptables best practice
I do not think we plan to do it in short term.
Regards,
Qian Zhang
On Tue, Jan 28, 2020 at 1:54 AM Marc Roos <M....@f1-outsourcing.eu>
wrote:
Hi Qian,
Any idea on when this cni 0.3 is going to be implemented? I saw the
issue priority is Major, can't remember if it was always like this.
But
looks promising.
Regards,
Marc
-----Original Message-----
Sent: 14 December 2019 09:46
To: user
Subject: RE: cni iptables best practice
Yes, yes I know, disaster. I wondered how or even if people are
using
iptables with tasks. Even on internal environment it could be nice
to
use not?
RE: cni iptables best practice
Posted by Marc Roos <M....@f1-outsourcing.eu>.
What about when I fund this? How much would it cost? Otherwise I need to
spend time/money on making a custom cni plugin that is not even
operating via standards.
PS. I do not see the point of getting some external programmer, that
needs to acquire specific knowledge on this subject first.
-----Original Message-----
Cc: user
Subject: Re: cni iptables best practice
I do not think we plan to do it in short term.
Regards,
Qian Zhang
On Tue, Jan 28, 2020 at 1:54 AM Marc Roos <M....@f1-outsourcing.eu>
wrote:
Hi Qian,
Any idea on when this cni 0.3 is going to be implemented? I saw the
issue priority is Major, can't remember if it was always like this.
But
looks promising.
Regards,
Marc
-----Original Message-----
Sent: 14 December 2019 09:46
To: user
Subject: RE: cni iptables best practice
Yes, yes I know, disaster. I wondered how or even if people are
using
iptables with tasks. Even on internal environment it could be nice
to
use not?
Re: cni iptables best practice
Posted by Qian Zhang <zh...@gmail.com>.
I do not think we plan to do it in short term.
Regards,
Qian Zhang
On Tue, Jan 28, 2020 at 1:54 AM Marc Roos <M....@f1-outsourcing.eu> wrote:
>
> Hi Qian,
>
> Any idea on when this cni 0.3 is going to be implemented? I saw the
> issue priority is Major, can't remember if it was always like this. But
> looks promising.
>
> Regards,
> Marc
>
>
>
>
> -----Original Message-----
> Sent: 14 December 2019 09:46
> To: user
> Subject: RE: cni iptables best practice
>
>
> Yes, yes I know, disaster. I wondered how or even if people are using
> iptables with tasks. Even on internal environment it could be nice to
> use not?
>
>
>
> -----Original Message-----
> To: user
> Subject: Re: cni iptables best practice
>
> You are right, we do not support CNI chaining plugin yet, and I think
> there is a ticket to trace it:
> https://issues.apache.org/jira/browse/MESOS-7079.
>
>
> Regards,
> Qian Zhang
>
>
> On Sat, Dec 14, 2019 at 7:08 AM Marc Roos <M....@f1-outsourcing.eu>
> wrote:
>
>
>
>
> Is anyone applying iptables rules in their cni networking, and
> how?
>
> I
> wrote a iptables chaining plugin but cannot use it because this
> cni
>
>
> 0.3.0 is still not supported in mesos 1.9. I wondered how this
> done
>
>
> currently
>
>
>
>
>
>
>
>
>
>
>
>
>
RE: cni iptables best practice
Posted by Marc Roos <M....@f1-outsourcing.eu>.
Hi Qian,
Any idea on when this cni 0.3 is going to be implemented? I saw the
issue priority is Major, can't remember if it was always like this. But
looks promising.
Regards,
Marc
-----Original Message-----
Sent: 14 December 2019 09:46
To: user
Subject: RE: cni iptables best practice
Yes, yes I know, disaster. I wondered how or even if people are using
iptables with tasks. Even on internal environment it could be nice to
use not?
-----Original Message-----
To: user
Subject: Re: cni iptables best practice
You are right, we do not support CNI chaining plugin yet, and I think
there is a ticket to trace it:
https://issues.apache.org/jira/browse/MESOS-7079.
Regards,
Qian Zhang
On Sat, Dec 14, 2019 at 7:08 AM Marc Roos <M....@f1-outsourcing.eu>
wrote:
Is anyone applying iptables rules in their cni networking, and how?
I
wrote a iptables chaining plugin but cannot use it because this cni
0.3.0 is still not supported in mesos 1.9. I wondered how this done
currently
RE: cni iptables best practice
Posted by Marc Roos <M....@f1-outsourcing.eu>.
Yes, yes I know, disaster. I wondered how or even if people are using
iptables with tasks. Even on internal environment it could be nice to
use not?
-----Original Message-----
To: user
Subject: Re: cni iptables best practice
You are right, we do not support CNI chaining plugin yet, and I think
there is a ticket to trace it:
https://issues.apache.org/jira/browse/MESOS-7079.
Regards,
Qian Zhang
On Sat, Dec 14, 2019 at 7:08 AM Marc Roos <M....@f1-outsourcing.eu>
wrote:
Is anyone applying iptables rules in their cni networking, and how?
I
wrote a iptables chaining plugin but cannot use it because this cni
0.3.0 is still not supported in mesos 1.9. I wondered how this done
currently
Re: cni iptables best practice
Posted by Qian Zhang <zh...@gmail.com>.
You are right, we do not support CNI chaining plugin yet, and I think there
is a ticket to trace it: https://issues.apache.org/jira/browse/MESOS-7079.
Regards,
Qian Zhang
On Sat, Dec 14, 2019 at 7:08 AM Marc Roos <M....@f1-outsourcing.eu> wrote:
>
>
> Is anyone applying iptables rules in their cni networking, and how? I
> wrote a iptables chaining plugin but cannot use it because this cni
> 0.3.0 is still not supported in mesos 1.9. I wondered how this done
> currently
>
>
>
>
>
>
>
>