|
|
|
|
|
|
by __turbobrew__
442 days ago
|
|
|
Makes sense, I have worked in and around CNI stuff for k8s and generally netns+veth is how most of them work. That being said we run k8s on bare metal, there isn’t any reason why running things on bare metal excludes netns usage. > Most VPCs (also AWS) don’t currently support "true" IPv6 scaleout behavior. Thats a shame. > if IPs were truly immutable and unique per workload, attribution becomes trivial I would like to see that. IPAM for multi-tenant workloads always felt like a kludge. You need the network to understand how to route to a workloads, but the network when running on ipv4 has many more workloads than addresses. If you assign immutable addresses per workload (or say it takes you a month to chew through your ipv6 address space) it makes it so the network natively knows how to route to workloads without the need to kludge with IP reassignments. I have had to deal with IP address pools being exhausted due to high pod churn in EC2 a number of times and it is always a pain. |
|
|
Immutable addressing per workload with IPv6 feels like such a clean mental model, especially for attribution, routing, and observability.
Curious if you have seen anyone pull that off cleanly in production, like truly immutable addressing at scale? Curious if it’s been battle tested somewhere or still mostly an ideal.