Kube-router is project that provides one cohesive solution that provides CNI networking for pods, an IPVS based network service proxy and iptables based network policy enforcement.
Kube-router also provides a service proxy, so kube-proxy will not be deployed in to the cluster.
Installing kube-router on a new Cluster ¶
The following command sets up a cluster with Kube-router.
export ZONES=mylistofzones kops create cluster \ --zones $ZONES \ --networking kube-router \ --yes \ --name myclustername.mydns.io
No additional configurations are required to be done by user. Kube-router automatically disables source-destination check on all AWS EC2 instances. For the traffic within a subnet there is no overlay or tunneling used. For cross-subnet pod traffic ip-ip tunneling is used implicitly and no configuration is required.