yexinru/doc-exports
1
0
Fork 0
forked from docs/doc-exports
Code Pull Requests Activity
Files
218900ecfc237f6c0ba9f9684f9afa10f1d5ea9a
doc-exports/docs/cce/umn/cce_10_0945.html
qiujiandong1 218900ecfc CCE UMN 20260128 version 
Reviewed-by: Gergo-Bence Lorincz <a200452876@noreply.gitea.eco.tsi-dev.otc-service.com>
Co-authored-by: qiujiandong1 <qiujiandong1@huawei.com>
Co-committed-by: qiujiandong1 <qiujiandong1@huawei.com>
2026-03-11 15:13:02 +00:00

264 lines
25 KiB
HTML
Raw Blame History

<a name="cce_10_0945"></a><a name="cce_10_0945"></a>
<h1 class="topictitle1">DataPlane V2 Network Acceleration</h1>
<div id="body0000002106253581"><p id="cce_10_0945__p122380578349">DataPlane V2 can be enabled in clusters that use VPC networks or Cloud Native Network 2.0. This function supports eBPF redirection for applying network policies.</p>
<div class="note" id="cce_10_0945__note146553921415"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0945__p565516918149">CCE DataPlane V2 is released with restrictions. To use this feature, submit a service ticket to CCE.</p>
</div></div>
<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0945__table364293817364" frame="border" border="1" rules="all"><thead align="left"><tr id="cce_10_0945__row1264213817368"><th align="left" class="cellrowborder" valign="top" width="26%" id="mcps1.3.3.1.3.1.1"><p id="cce_10_0945__p44362446364">DataPlane V2</p>
</th>
<th align="left" class="cellrowborder" valign="top" width="74%" id="mcps1.3.3.1.3.1.2"><p id="cce_10_0945__p943604433618">Description</p>
</th>
</tr>
</thead>
<tbody><tr id="cce_10_0945__row995523082816"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.1.3.1.1 "><p id="cce_10_0945__p495515308282">Technical implementation</p>
</td>
<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.1.3.1.2 "><p id="cce_10_0945__p253744912106">DataPlane V2 integrates open-source <a href="https://docs.cilium.io/en/stable/" target="_blank" rel="noopener noreferrer">Cilium</a> to provide capabilities such as network policies.</p>
</td>
</tr>
<tr id="cce_10_0945__row5642138123610"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.1.3.1.1 "><p id="cce_10_0945__p9436144113619">Supported cluster versions</p>
</td>
<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.1.3.1.2 "><p id="cce_10_0945__p6547220185115">CCE standard clusters using VPC networks for commercial use of v1.27.16-r30, v1.28.15-r20, v1.29.13-r0, v1.30.10-r0, v1.31.6-r0, or later</p>
<p id="cce_10_0945__p743694493620">CCE Turbo clusters in limited OBT of v1.27.16-r10, v1.28.15-r0, v1.29.10-r0, v1.30.6-r0, or later</p>
</td>
</tr>
<tr id="cce_10_0945__row2686144134"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.1.3.1.1 "><p id="cce_10_0945__p1445751219138">Usage</p>
</td>
<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.1.3.1.2 "><ul id="cce_10_0945__ul8457101216138"><li id="cce_10_0945__li445711201313">When creating a CCE standard cluster, select the VPC network in the container network configuration and enable <strong id="cce_10_0945__b1280015352131">DataPlane V2</strong>.</li><li id="cce_10_0945__li1345751241316">When creating a CCE Turbo cluster, select Cloud Native Network 2.0 and enable <strong id="cce_10_0945__b5699153717133">DataPlane V2</strong>.</li></ul>
<div class="notice" id="cce_10_0945__note19850142517135"><span class="noticetitle"> NOTICE: </span><div class="noticebody"><ul id="cce_10_0945__ul335613261132"><li id="cce_10_0945__li14437154419364">After DataPlane V2 is enabled, secure containers (Kata Containers as the container runtime) are not supported.</li><li id="cce_10_0945__li1643714463612">Enabled DataPlane V2 cannot be disabled.</li><li id="cce_10_0945__li135792681317">DataPlane V2 can only be enabled for new clusters.</li><li id="cce_10_0945__li17751118121">CCE Turbo DataPlane V2 is in limited OBT. Upgrading it to a commercial version requires the node to be reset. Exercise caution when enabling this function.</li><li id="cce_10_0945__li11614628145111">If Layer 7 network policies or DNS-based policies are enabled for services in your cluster, the traffic that matches these policies will be disrupted during a Cilium upgrade. For details, see the <a href="https://docs.cilium.io/en/v1.17/operations/upgrade/#version-specific-notes" target="_blank" rel="noopener noreferrer">constraints in the community</a>.</li></ul>
</div></div>
</td>
</tr>
<tr id="cce_10_0945__row1664210388361"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.1.3.1.1 "><p id="cce_10_0945__p643654483617">Supported OS</p>
</td>
<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.1.3.1.2 "><p id="cce_10_0945__p12436244193611">Only <span id="cce_10_0945__ph14203823133013">HCE OS 2.0</span> is supported.</p>
</td>
</tr>
<tr id="cce_10_0945__row4642183812362"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.1.3.1.1 "><p id="cce_10_0945__p543684483618">Performance optimization</p>
</td>
<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.1.3.1.2 "><ul id="cce_10_0945__ul194361441361"><li id="cce_10_0945__li20436114433611">EDT is used to limit the egress bandwidth. This makes bandwidth limitation more accurate and resource consumption lower.</li></ul>
</td>
</tr>
<tr id="cce_10_0945__row783164219368"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.1.3.1.1 "><p id="cce_10_0945__p6436174417360">Bandwidth</p>
</td>
<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.1.3.1.2 "><p id="cce_10_0945__p716417591111">After DataPlane V2 network acceleration is enabled, pods on the nodes running <span id="cce_10_0945__ph869517177154">HCE OS 2.0</span> use EDT to limit the egress bandwidth. The ingress bandwidth limitation is not supported. If DataPlane V2 is not enabled, the TBF Qdisc is used to limit the bandwidth. For details, see <a href="cce_10_0382.html">Configuring QoS for Pods</a>.</p>
</td>
</tr>
<tr id="cce_10_0945__row762764213612"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.1.3.1.1 "><p id="cce_10_0945__p5436244113616">NetworkPolicy</p>
</td>
<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.1.3.1.2 "><ul id="cce_10_0945__ul3726405308"><li id="cce_10_0945__li772104015309">The implementation of network policies is different from that of container tunnel networks. For details, see <a href="cce_10_0059.html">Configuring Network Policies to Restrict Pod Access</a>.<ul id="cce_10_0945__ul8999163041019"><li id="cce_10_0945__li18999183011106">The IPBlock selector can only select CIDR blocks outside a cluster.</li><li id="cce_10_0945__li799973031011">The IPBlock selector does not have good support for the <strong id="cce_10_0945__b370824321313">except</strong> keyword, so this keyword is not recommended.</li><li id="cce_10_0945__li40133117105">If a network policy of the egress type is used, the pod fails to access the IP addresses of the hostNetwork pod and node in the cluster.</li></ul>
</li></ul>
<ul id="cce_10_0945__ul6690164543011"><li id="cce_10_0945__li164764719599">The <a href="https://docs.cilium.io/en/v1.17/network/kubernetes/policy/#ciliumnetworkpolicy" target="_blank" rel="noopener noreferrer">CiliumNetworkPolicy</a> and <a href="https://docs.cilium.io/en/v1.17/network/kubernetes/policy/#ciliumclusterwidenetworkpolicy" target="_blank" rel="noopener noreferrer">CiliumClusterwideNetworkPolicy</a> APIs support different functions in different clusters.<ul id="cce_10_0945__ul9477671597"><li id="cce_10_0945__li1447777105916">CCE standard clusters do not support <a href="https://docs.cilium.io/en/v1.17/security/policy/language/#hostpolicies" target="_blank" rel="noopener noreferrer">host policies</a>.</li><li id="cce_10_0945__li1947712755913">CCE Turbo clusters do not support <a href="https://docs.cilium.io/en/v1.14/security/policy/language/#hostpolicies" target="_blank" rel="noopener noreferrer">host policies</a>, <a href="https://docs.cilium.io/en/v1.14/security/dns/" target="_blank" rel="noopener noreferrer">DNS-based policies</a>, or <a href="https://docs.cilium.io/en/v1.14/security/policy/language/#layer-7-examples" target="_blank" rel="noopener noreferrer">Layer 7 network policies</a>.</li></ul>
</li></ul>
</td>
</tr>
<tr id="cce_10_0945__row1971604283611"><td class="cellrowborder" valign="top" width="26%" headers="mcps1.3.3.1.3.1.1 "><p id="cce_10_0945__p0436184483612">Resource consumption</p>
</td>
<td class="cellrowborder" valign="top" width="74%" headers="mcps1.3.3.1.3.1.2 "><p id="cce_10_0945__p83019316124">The resident cilium-agent process on each node is responsible for eBPF network acceleration. Each cilium-agent process may occupy 80 MiB of memory. Each time a pod is added, the cilium-agent memory consumption may increase by 10 KiB.</p>
</td>
</tr>
</tbody>
</table>
</div>
<div class="section" id="cce_10_0945__section1320149522"><h4 class="sectiontitle">Components</h4><p id="cce_10_0945__p57814181125">After DataPlane V2 is enabled, components listed in the following table are installed.</p>
<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0945__table13389543627" frame="border" border="1" rules="all"><thead align="left"><tr id="cce_10_0945__row138974312212"><th align="left" class="cellrowborder" valign="top" width="20%" id="mcps1.3.4.3.1.4.1.1"><p id="cce_10_0945__p181914557217">Component</p>
</th>
<th align="left" class="cellrowborder" valign="top" width="63%" id="mcps1.3.4.3.1.4.1.2"><p id="cce_10_0945__p16197551524">Description</p>
</th>
<th align="left" class="cellrowborder" valign="top" width="17%" id="mcps1.3.4.3.1.4.1.3"><p id="cce_10_0945__p7191955723">Resource Type</p>
</th>
</tr>
</thead>
<tbody><tr id="cce_10_0945__row23892432215"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.4.3.1.4.1.1 "><p id="cce_10_0945__p17191551022">cilium-operator</p>
</td>
<td class="cellrowborder" valign="top" width="63%" headers="mcps1.3.4.3.1.4.1.2 "><ul id="cce_10_0945__ul343860538"><li id="cce_10_0945__li13438601730">Synchronizes CRDs.</li><li id="cce_10_0945__li1743840732">Removes the <strong id="cce_10_0945__b193084591289">node.cilium.io/agent-not-ready</strong> taint of a node.</li><li id="cce_10_0945__li34383019314">Tunes and recycles internal resources.</li></ul>
</td>
<td class="cellrowborder" valign="top" width="17%" headers="mcps1.3.4.3.1.4.1.3 "><p id="cce_10_0945__p151916557211">Deployment</p>
</td>
</tr>
<tr id="cce_10_0945__row08669537216"><td class="cellrowborder" valign="top" width="20%" headers="mcps1.3.4.3.1.4.1.1 "><p id="cce_10_0945__p7193551326">yangtse-cilium</p>
</td>
<td class="cellrowborder" valign="top" width="63%" headers="mcps1.3.4.3.1.4.1.2 "><ul id="cce_10_0945__ul481118219314"><li id="cce_10_0945__li128116218320">Installs the auxiliary CNI (cilium-cni) for CCE to adapt to Cilium.</li><li id="cce_10_0945__li8811721317">Deploys cilium-agent.</li></ul>
</td>
<td class="cellrowborder" valign="top" width="17%" headers="mcps1.3.4.3.1.4.1.3 "><p id="cce_10_0945__p6192551422">DaemonSet</p>
</td>
</tr>
</tbody>
</table>
</div>
</div>
<div class="section" id="cce_10_0945__section56372407557"><h4 class="sectiontitle">Configuration Management</h4><p id="cce_10_0945__p15793171255817">You can use ConfigMaps to create custom network components of DataPlane V2.</p>
<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0945__table176199130563" frame="border" border="1" rules="all"><thead align="left"><tr id="cce_10_0945__row156208135563"><th align="left" class="cellrowborder" valign="top" width="21.08%" id="mcps1.3.5.3.1.5.1.1"><p id="cce_10_0945__p29249169565">ConfigMap Configuration</p>
</th>
<th align="left" class="cellrowborder" valign="top" width="35.92%" id="mcps1.3.5.3.1.5.1.2"><p id="cce_10_0945__p392421616568">Description</p>
</th>
<th align="left" class="cellrowborder" valign="top" width="28.13%" id="mcps1.3.5.3.1.5.1.3"><p id="cce_10_0945__p19924416125619">Configurable Component</p>
</th>
<th align="left" class="cellrowborder" valign="top" width="14.87%" id="mcps1.3.5.3.1.5.1.4"><p id="cce_10_0945__p1092471625619">Priority</p>
</th>
</tr>
</thead>
<tbody><tr id="cce_10_0945__row7620313185616"><td class="cellrowborder" valign="top" width="21.08%" headers="mcps1.3.5.3.1.5.1.1 "><p id="cce_10_0945__p1592441618560">yangtse-cilium-config</p>
</td>
<td class="cellrowborder" valign="top" width="35.92%" headers="mcps1.3.5.3.1.5.1.2 "><p id="cce_10_0945__p159241816185613">Default DataPlane V2 configuration. If this configuration is modified, the configuration will be restored to what it was during the cluster upgrade. <strong id="cce_10_0945__b793013559595">Do not modify this configuration.</strong></p>
</td>
<td class="cellrowborder" valign="top" width="28.13%" headers="mcps1.3.5.3.1.5.1.3 "><p id="cce_10_0945__p392451695611">cilium-agent</p>
</td>
<td class="cellrowborder" valign="top" width="14.87%" headers="mcps1.3.5.3.1.5.1.4 "><p id="cce_10_0945__p169249165568">1</p>
</td>
</tr>
<tr id="cce_10_0945__row17620131395611"><td class="cellrowborder" valign="top" width="21.08%" headers="mcps1.3.5.3.1.5.1.1 "><p id="cce_10_0945__p7924816195618">cilium-config</p>
</td>
<td class="cellrowborder" valign="top" width="35.92%" headers="mcps1.3.5.3.1.5.1.2 "><p id="cce_10_0945__p192491616560">Native configuration of the Cilium community. The priority of this configuration is lower than that of yangtse-cilium-config. <strong id="cce_10_0945__b19811133715120">If you need to create custom DataPlane V2 components, modify this configuration first.</strong></p>
</td>
<td class="cellrowborder" valign="top" width="28.13%" headers="mcps1.3.5.3.1.5.1.3 "><p id="cce_10_0945__p76442414014"><a href="https://docs.cilium.io/en/v1.17/cmdref/cilium-agent/" target="_blank" rel="noopener noreferrer">cilium-agent</a></p>
<p id="cce_10_0945__p1092471610568"><a href="https://docs.cilium.io/en/v1.17/cmdref/cilium-operator-generic/" target="_blank" rel="noopener noreferrer">cilium-operator</a></p>
</td>
<td class="cellrowborder" valign="top" width="14.87%" headers="mcps1.3.5.3.1.5.1.4 "><p id="cce_10_0945__p1692411685619">2</p>
</td>
</tr>
</tbody>
</table>
</div>
<div class="note" id="cce_10_0945__note98511345165611"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="cce_10_0945__p38511945195615">Currently, only the Cilium add-on of 2.1.1 or later supports custom configuration.</p>
</div></div>
<p id="cce_10_0945__p127858301014">Example custom network components:</p>
<ul id="cce_10_0945__ul1483311561012"><li id="cce_10_0945__li683316562110">Example 1: When cilium-agent is abnormal, you can configure <strong id="cce_10_0945__b12579193295718">--set-cilium-node-taints=true</strong> for cilium-operator to automatically add taints to a node to prevent pods from being scheduled to that node.<p id="cce_10_0945__p1038123765714">You can create the following native ConfigMap configuration of the Cilium community:</p>
<pre class="screen" id="cce_10_0945__screen16576184925714">apiVersion: v1
kind: ConfigMap
metadata:
name: cilium-config
namespace: kube-system
data:
set-cilium-node-taints: "true"</pre>
<p id="cce_10_0945__p71481944504">After configuring cilium-config, you can run the following command to roll back and rebuild cilium-operator to apply the configuration:</p>
<pre class="screen" id="cce_10_0945__screen82918551202">uuid=$(uuidgen)
kubectl patch deployment -n kube-system cilium-operator --type='json' -p="[{\"op\": \"add\", \"path\": \"/spec/template/metadata/annotations/change-id\", \"value\": \"$uuid\"}]"</pre>
</li><li id="cce_10_0945__li297811102214">Example 2: If you want to enable Hubble of cilium-agent, you can create the following naive ConfigMap configuration of the Cilium community. For details about the parameter settings, see <a href="cce_10_1063.html">Deploying Hubble for DataPlane V2 Network Observability</a>.<pre class="screen" id="cce_10_0945__screen10304543522">apiVersion: v1
kind: ConfigMap
metadata:
name: cilium-config
namespace: kube-system
data:
enable-hubble: "true"
hubble-disable-tls: "true"
hubble-listen-address: :4244
hubble-metrics: dns drop tcp flow port-distribution icmp http
hubble-metrics-server: :9965</pre>
<p id="cce_10_0945__p105581381242">After configuring cilium-config, you can run the following command to roll back and rebuild yangtse-cilium to apply the configuration:</p>
<pre class="screen" id="cce_10_0945__screen1855868849">uuid=$(uuidgen)
kubectl patch daemonset -nkube-system yangtse-cilium --type='json' -p="[{\"op\": \"add\", \"path\": \"/spec/template/metadata/annotations/change-id\", \"value\": \"$uuid\"}]"</pre>
</li></ul>
</div>
<div class="section" id="cce_10_0945__section575203812319"><h4 class="sectiontitle">Change History</h4><p id="cce_10_0945__p139664285719">You can run the following command to check the cilium-operator image tag for the DataPlane V2 version:</p>
<pre class="screen" id="cce_10_0945__screen13969425577">kubectl get deploy -nkube-system cilium-operator -oyaml | grep "image:" | cut -d ':' -f 3</pre>
<p id="cce_10_0945__p32171722155819">Information similar to the following is displayed:</p>
<pre class="screen" id="cce_10_0945__screen6267192885812">2.1.1</pre>
<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="cce_10_0945__table88489551792" frame="border" border="1" rules="all"><thead align="left"><tr id="cce_10_0945__row139251455994"><th align="left" class="cellrowborder" valign="top" width="16.31%" id="mcps1.3.6.6.1.6.1.1"><p id="cce_10_0945__p1969103105514">Add-on Version</p>
</th>
<th align="left" class="cellrowborder" valign="top" width="7.5200000000000005%" id="mcps1.3.6.6.1.6.1.2"><p id="cce_10_0945__p17106845135910">Status</p>
</th>
<th align="left" class="cellrowborder" valign="top" width="27.21%" id="mcps1.3.6.6.1.6.1.3"><p id="cce_10_0945__p396917314551">Cluster Version</p>
</th>
<th align="left" class="cellrowborder" valign="top" width="32.64%" id="mcps1.3.6.6.1.6.1.4"><p id="cce_10_0945__p17969937559">New Feature</p>
</th>
<th align="left" class="cellrowborder" valign="top" width="16.32%" id="mcps1.3.6.6.1.6.1.5"><p id="cce_10_0945__p513770143216">Community Version</p>
</th>
</tr>
</thead>
<tbody><tr id="cce_10_0945__row47550411742"><td class="cellrowborder" valign="top" width="16.31%" headers="mcps1.3.6.6.1.6.1.1 "><p id="cce_10_0945__p234513502412">2.1.1</p>
</td>
<td class="cellrowborder" valign="top" width="7.5200000000000005%" headers="mcps1.3.6.6.1.6.1.2 "><p id="cce_10_0945__p11106134514598">Commercial use</p>
</td>
<td class="cellrowborder" valign="top" width="27.21%" headers="mcps1.3.6.6.1.6.1.3 "><p id="cce_10_0945__p17345135011419">v1.27</p>
<p id="cce_10_0945__p11345105019418">v1.28</p>
<p id="cce_10_0945__p1634517501148">v1.29</p>
<p id="cce_10_0945__p183452501245">v1.30</p>
<p id="cce_10_0945__p2034517505419">v1.31</p>
<p id="cce_10_0945__p134515501948">v1.32</p>
<p id="cce_10_0945__p15345750543">v1.33</p>
</td>
<td class="cellrowborder" valign="top" width="32.64%" headers="mcps1.3.6.6.1.6.1.4 "><ul id="cce_10_0945__ul163458501243"><li id="cce_10_0945__li3345195019411">Support for only the CCE standard clusters that use VPC networks</li><li id="cce_10_0945__li53454501149">Upgraded Cilium to v1.17.6.</li><li id="cce_10_0945__li193459505415">Support for CCE standard clusters of v1.33</li><li id="cce_10_0945__li43451950448">Custom Cilium parameters</li><li id="cce_10_0945__li834545019414">Configurable Hubble observability</li></ul>
</td>
<td class="cellrowborder" valign="top" width="16.32%" headers="mcps1.3.6.6.1.6.1.5 "><p id="cce_10_0945__p8722125918418"><a href="https://docs.cilium.io/en/v1.17/" target="_blank" rel="noopener noreferrer">v1.17</a></p>
</td>
</tr>
<tr id="cce_10_0945__row104528515916"><td class="cellrowborder" valign="top" width="16.31%" headers="mcps1.3.6.6.1.6.1.1 "><p id="cce_10_0945__p15519151117911">2.0.2</p>
</td>
<td class="cellrowborder" valign="top" width="7.5200000000000005%" headers="mcps1.3.6.6.1.6.1.2 "><p id="cce_10_0945__p91069459595">OBT</p>
</td>
<td class="cellrowborder" valign="top" width="27.21%" headers="mcps1.3.6.6.1.6.1.3 "><p id="cce_10_0945__p135191511290">v1.27</p>
<p id="cce_10_0945__p105203111293">v1.28</p>
<p id="cce_10_0945__p1252013112918">v1.29</p>
<p id="cce_10_0945__p352011111399">v1.30</p>
<p id="cce_10_0945__p352016116912">v1.31</p>
<p id="cce_10_0945__p1652018117914">v1.32</p>
</td>
<td class="cellrowborder" valign="top" width="32.64%" headers="mcps1.3.6.6.1.6.1.4 "><ul id="cce_10_0945__ul65208116915"><li id="cce_10_0945__li1452081114914">Support for only the CCE standard clusters that use VPC networks</li><li id="cce_10_0945__li10312131511511">Upgraded Cilium to v1.17.3.</li><li id="cce_10_0945__li36694213017">Disabled bpf-lb-sock (by setting <strong id="cce_10_0945__b7132123713148">bpf-lb-sock=false</strong>).</li><li id="cce_10_0945__li9674901719">Disabled host-based firewalls (by setting <strong id="cce_10_0945__b6851194413147">enable-host-firewall=false</strong>).</li><li id="cce_10_0945__li1520201110915">Enabled Layer 7 network policies (by setting <strong id="cce_10_0945__b717281620158">enable-l7-proxy=true</strong>).</li><li id="cce_10_0945__li187014911321">Enabled host-routing (by setting <strong id="cce_10_0945__b1560133571512">enable-host-legacy-routing=false</strong>).</li></ul>
</td>
<td class="cellrowborder" valign="top" width="16.32%" headers="mcps1.3.6.6.1.6.1.5 "><p id="cce_10_0945__p19520121114917"><a href="https://docs.cilium.io/en/v1.17/" target="_blank" rel="noopener noreferrer">v1.17</a></p>
</td>
</tr>
<tr id="cce_10_0945__row59791128353"><td class="cellrowborder" valign="top" width="16.31%" headers="mcps1.3.6.6.1.6.1.1 "><p id="cce_10_0945__p158213369518">1.0.16</p>
</td>
<td class="cellrowborder" valign="top" width="7.5200000000000005%" headers="mcps1.3.6.6.1.6.1.2 "><p id="cce_10_0945__p18106945135917">Limited OBT</p>
</td>
<td class="cellrowborder" valign="top" width="27.21%" headers="mcps1.3.6.6.1.6.1.3 "><p id="cce_10_0945__p175825361253">v1.27</p>
<p id="cce_10_0945__p5582936456">v1.28</p>
<p id="cce_10_0945__p958212362054">v1.29</p>
<p id="cce_10_0945__p458213360514">v1.30</p>
<p id="cce_10_0945__p15828361753">v1.31</p>
<p id="cce_10_0945__p1258217366520">v1.32</p>
<p id="cce_10_0945__p115821836454">v1.33</p>
</td>
<td class="cellrowborder" valign="top" width="32.64%" headers="mcps1.3.6.6.1.6.1.4 "><ul id="cce_10_0945__ul1358216361658"><li id="cce_10_0945__li7582536352">Support for CCE Turbo clusters of v1.33</li></ul>
</td>
<td class="cellrowborder" valign="top" width="16.32%" headers="mcps1.3.6.6.1.6.1.5 "><p id="cce_10_0945__p576320431855"><a href="https://docs.cilium.io/en/v1.14/" target="_blank" rel="noopener noreferrer">v1.14</a></p>
</td>
</tr>
<tr id="cce_10_0945__row17558321891"><td class="cellrowborder" valign="top" width="16.31%" headers="mcps1.3.6.6.1.6.1.1 "><p id="cce_10_0945__p15120158897">1.0.15</p>
</td>
<td class="cellrowborder" valign="top" width="7.5200000000000005%" headers="mcps1.3.6.6.1.6.1.2 "><p id="cce_10_0945__p810619453596">Limited OBT</p>
</td>
<td class="cellrowborder" valign="top" width="27.21%" headers="mcps1.3.6.6.1.6.1.3 "><p id="cce_10_0945__p15121178997">v1.27</p>
<p id="cce_10_0945__p1012115813913">v1.28</p>
<p id="cce_10_0945__p812110812919">v1.29</p>
<p id="cce_10_0945__p8121081695">v1.30</p>
<p id="cce_10_0945__p1312112813915">v1.31</p>
<p id="cce_10_0945__p9485113217118">v1.32</p>
</td>
<td class="cellrowborder" valign="top" width="32.64%" headers="mcps1.3.6.6.1.6.1.4 "><ul id="cce_10_0945__ul14121138593"><li id="cce_10_0945__li11211081692">Disabled bpf-lb-sock (by setting <strong id="cce_10_0945__b136117401134">bpf-lb-sock=false</strong>).</li></ul>
</td>
<td class="cellrowborder" valign="top" width="16.32%" headers="mcps1.3.6.6.1.6.1.5 "><p id="cce_10_0945__p1212118812915"><a href="https://docs.cilium.io/en/v1.14/" target="_blank" rel="noopener noreferrer">v1.14</a></p>
</td>
</tr>
<tr id="cce_10_0945__row205904108286"><td class="cellrowborder" valign="top" width="16.31%" headers="mcps1.3.6.6.1.6.1.1 "><p id="cce_10_0945__p18386191972818">1.0.8</p>
</td>
<td class="cellrowborder" valign="top" width="7.5200000000000005%" headers="mcps1.3.6.6.1.6.1.2 "><p id="cce_10_0945__p1310615457596">Limited OBT</p>
</td>
<td class="cellrowborder" valign="top" width="27.21%" headers="mcps1.3.6.6.1.6.1.3 "><p id="cce_10_0945__p2038671972815">v1.27</p>
<p id="cce_10_0945__p33861819112810">v1.28</p>
<p id="cce_10_0945__p163861919102814">v1.29</p>
<p id="cce_10_0945__p4322155817299">v1.30</p>
<p id="cce_10_0945__p4306161613418">v1.31</p>
</td>
<td class="cellrowborder" valign="top" width="32.64%" headers="mcps1.3.6.6.1.6.1.4 "><ul id="cce_10_0945__ul10911326247"><li id="cce_10_0945__li19118261410">Supported CCE Turbo clusters that use Cloud Native 2.0 networks.</li><li id="cce_10_0945__li65626219108">Disabled host-based firewalls (by setting <strong id="cce_10_0945__b18901145504113">enable-host-firewall=false</strong>).</li><li id="cce_10_0945__li10243183921512">Disabled L7 network policies (by setting <strong id="cce_10_0945__b1799317810415">enable-l7-proxy=false</strong>).</li></ul>
</td>
<td class="cellrowborder" valign="top" width="16.32%" headers="mcps1.3.6.6.1.6.1.5 "><p id="cce_10_0945__p838681918281"><a href="https://docs.cilium.io/en/v1.14/" target="_blank" rel="noopener noreferrer">v1.14</a></p>
</td>
</tr>
</tbody>
</table>
</div>
</div>
</div>
<div>
<div class="familylinks">
<div class="parentlink"><strong>Parent topic:</strong> <a href="cce_10_0675.html">Pod Network Settings</a></div>
</div>
</div>
View Git Blame Copy Permalink