ipam: mapping docker address-spaces with neutron address-scopes
In docker, notion of namespaces is served by 'addressSpaces' which is similar to neutron address-scopes (non-overlapping cidrs). There should be two default address-scopes(one for each ip version) with default subnetpools associated to corresponding default address-scopes.
While creating subnet subnetpool-id should be passed using '--subnetpool' . If no address-Space is received from docker, subnet should be created with subnetpool id queried from docker using rest apis. While allocating requested ip address, subnet will be picked filtering with subnetpool-id and cidr.
But since many kuryr binding backends still need dont support address-scopes, making address-scopes support mandatory in Kuryr will not work for those backends. To handle this we can make address-scopes support enable/disable from config file (similar to tags).
Without address-scopes support, to tackle this bug [1] (multiple subnets with same cidr), this patch [2], should get accepted in docker for poolID info.
[1]https:/
[2]https:/
More details I will be mentioning in the spec soon.
Blueprint information
- Status:
- Not started
- Approver:
- Mohammad Banikazemi
- Priority:
- Medium
- Drafter:
- vikas choudhary
- Direction:
- Approved
- Assignee:
- vikas choudhary
- Definition:
- Discussion
- Series goal:
- None
- Implementation:
- Unknown
- Milestone target:
- None
- Started by
- Completed by
Related branches
Related bugs
Sprints
Whiteboard
Gerrit topic: https:/
Addressed by: https:/
[WIP] Map docker address-spaces to neutron address-scopes
Comment from Irena:
As far as I understand address scopes have additional intent of imposing that subnets that belong to the same address scope can be communicate without NAT. I am not sure how many plugins support this right now, since it requires L3 care. Do you intend to use address scopes to contain different subnet pools to provide the non overlapping pools or plan to leverage the whole scope of the address scope feature?
Vikas:
@Irena, You are correct Irena, just want to leverage provisioning of non overlapping address-pools only. As far as I understand, scope of docker address-spaces is till managing overlapping of addresses only. So to support this, want to use a subset of netron address-scopes features.
Gerrit topic: https:/
Addressed by: https:/
Add devref for overlapping-cidrs