Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

networkd: prevent networkd interference of weave network devices #22

Merged
merged 1 commit into from
Jul 31, 2020
Merged

networkd: prevent networkd interference of weave network devices #22

merged 1 commit into from
Jul 31, 2020

Conversation

cdemers
Copy link
Contributor

@cdemers cdemers commented Jul 14, 2020

Prevent networkd interference of weave network devices

This change prevents systemd-networkd interference with
the Weave virtual interfaces weave, datapath and
vxlan-6784 are all created by Weave. Documentation on these
interfaces is available here:

This fixes DHCP issues introduced by networkd interference
reported by multiple users and mainly highlighted by this issue:

The issue doesn't seems to cause any significant impact on
performance, however it will cause Weave NPC to produce a
high volume of the following repetitive warning logs.

WARN: 2019/07/05 11:12:25.102451 UDP connection from 0.0.0.0:68 to 255.255.255.255:67 blocked by Weave NPC.

How to use

Having the weave.network file provided to networkd should
be enough.

Testing done

We have run many Flatcar instances in production with this configuration enabled, for at least one full week. The instances
are part of a many Kubernetes clusters using Weave as their network overlay.

@pothos
Copy link
Member

pothos commented Jul 17, 2020

Hello,
thank you for providing a PR! It looks good but we first need to test it ourselves again.

@cdemers
Copy link
Contributor Author

cdemers commented Jul 21, 2020
edited
Loading

Thank you, we are still doing some more testing on our side (on AWS), we'll comment here if we find anything.

pothos added a commit that referenced this pull request Jul 27, 2020
@pothos
Merge pull request #22 from flatcar-linux/init
30f2ddb 
networkd: prevent networkd interference of weave network devices by cdemers
pothos
pothos approved these changes Jul 31, 2020
View reviewed changes
Copy link
Member

@pothos pothos left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Ran tests on Digital Ocean and Azure

@pothos pothos merged commit 1ba0368 into flatcar:flatcar-master Jul 31, 2020
pothos added a commit to flatcar-archive/coreos-overlay that referenced this pull request Jul 31, 2020
@pothos
coreos-base/coreos-init: Update to exclude weave network devices
25e8417 
The special weave devices are now excluded from networkd to prevent
interference.
This pulls in
flatcar/init#22
@pothos pothos mentioned this pull request Jul 31, 2020
Merged
@pothos
Copy link
Member

pothos commented Jul 31, 2020

Thank you for your contribution. This will be part of the next Alpha release.

pothos added a commit to flatcar-archive/coreos-overlay that referenced this pull request Sep 14, 2020
@pothos
coreos-base/coreos-init: Update to new version
dddfaf9 
This pulls in the new sub key for flatcar-install
flatcar/init#25
and a networkd unit to exclude Weave interfaces from DHCP
flatcar/init#22
and an update to two other networkd units which lacked a match section
that is mandatory in future systemd versions
flatcar/init#23
@pothos pothos mentioned this pull request Sep 14, 2020
Merged
jepio pushed a commit that referenced this pull request Feb 21, 2022
@margamanterola
Merge pull request #22 from kinvolk/marga-kinvolk/iscsi
b36e194 
Enable iSCSI netroot devices on Flatcar
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@pothos pothos pothos approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@cdemers @pothos