Configuring an SR-IOV InfiniBand network attachment

You can configure an InfiniBand (IB) network attachment for an Single Root I/O Virtualization (SR-IOV) device in the cluster.

InfiniBand device configuration object

You can configure an InfiniBand (IB) network device by defining an SriovIBNetwork object.

The following YAML describes an SriovIBNetwork object:

  1. apiVersion: sriovnetwork.openshift.io/v1
  2. kind: SriovIBNetwork
  3. metadata:
  4.   name: <name> (1)
  5.   namespace: openshift-sriov-network-operator (2)
  6. spec:
  7.   resourceName: <sriov_resource_name> (3)
  8.   networkNamespace: <target_namespace> (4)
  9.   ipam: |- (5)
  10.     {}
  11.   linkState: <link_state> (6)
  12.   capabilities: <capabilities> (7)
1A name for the object. The SR-IOV Network Operator creates a NetworkAttachmentDefinition object with same name.
2The namespace where the SR-IOV Operator is installed.
3The value for the spec.resourceName parameter from the SriovNetworkNodePolicy object that defines the SR-IOV hardware for this additional network.
4The target namespace for the SriovIBNetwork object. Only pods in the target namespace can attach to the network device.
5Optional: A configuration object for the IPAM CNI plug-in as a YAML block scalar. The plug-in manages IP address assignment for the attachment definition.
6Optional: The link state of virtual function (VF). Allowed values are enable, disable and auto.
7Optional: The capabilities to configure for this network. You can specify “{ “ips”: true }” to enable IP address support or “{ “infinibandGUID”: true }” to enable IB Global Unique Identifier (GUID) support.

Configuration for ipam CNI plug-in

The ipam Container Network Interface (CNI) plug-in provides IP address management (IPAM) for other CNI plug-ins.

You can use the following methods for IP address assignment:

  • Static assignment.

  • Dynamic assignment through a DHCP server. The DHCP server you specify must be reachable from the additional network.

  • Dynamic assignment through the Whereabouts IPAM CNI plug-in.

Static IP address assignment configuration

The following JSON describes the configuration for static IP address assignment:

Static assignment configuration

  1. {
  2.   "ipam": {
  3.     "type": "static",
  4.     "addresses": [ (1)
  5.       {
  6.         "address": "<address>", (2)
  7.         "gateway": "<gateway>" (3)
  8.       }
  9.     ],
  10.     "routes": [ (4)
  11.       {
  12.         "dst": "<dst>", (5)
  13.         "gw": "<gw>" (6)
  14.       }
  15.     ],
  16.     "dns": { (7)
  17.       "nameservers": ["<nameserver>"], (8)
  18.       "domain": "<domain>", (9)
  19.       "search": ["<search_domain>"] (10)
  20.     }
  21.   }
  22. }
1An array describing IP addresses to assign to the virtual interface. Both IPv4 and IPv6 IP addresses are supported.
2An IP address and network prefix that you specify. For example, if you specify 10.10.21.10/24, then the additional network is assigned an IP address of 10.10.21.10 and the netmask is 255.255.255.0.
3The default gateway to route egress network traffic to.
4An array describing routes to configure inside the pod.
5The IP address range in CIDR format, such as 192.168.17.0/24, or 0.0.0.0/0 for the default route.
6The gateway where network traffic is routed.
7Optional: DNS configuration.
8An of array of one or more IP addresses for to send DNS queries to.
9The default domain to append to a hostname. For example, if the domain is set to example.com, a DNS lookup query for example-host is rewritten as example-host.example.com.
10An array of domain names to append to an unqualified hostname, such as example-host, during a DNS lookup query.

Dynamic IP address assignment configuration

The following JSON describes the configuration for dynamic IP address address assignment with DHCP.

Renewal of DHCP leases

A pod obtains its original DHCP lease when it is created. The lease must be periodically renewed by a minimal DHCP server deployment running on the cluster.

To trigger the deployment of the DHCP server, you must create a shim network attachment by editing the Cluster Network Operator configuration, as in the following example:

Example shim network attachment definition
  1. apiVersion: operator.openshift.io/v1
  2. kind: Network
  3. metadata:
  4.   name: cluster
  5. spec:
  6.   
  7.   additionalNetworks:
  8.   - name: dhcp-shim
  9.     namespace: default
  10.     type: Raw
  11.     rawCNIConfig: |-
  12.       {
  13.         name”: dhcp-shim”,
  14.         cniVersion”: 0.3.1”,
  15.         type”: bridge”,
  16.         ipam”: {
  17.           type”: dhcp
  18.         }
  19.       }

DHCP assignment configuration

  1. {
  2.   "ipam": {
  3.     "type": "dhcp"
  4.   }
  5. }

Dynamic IP address assignment configuration with Whereabouts

The Whereabouts CNI plug-in allows the dynamic assignment of an IP address to an additional network without the use of a DHCP server.

The following JSON describes the configuration for dynamic IP address assignment with Whereabouts:

Whereabouts assignment configuration

  1. {
  2.   "ipam": {
  3.     "type": "whereabouts",
  4.     "range": "<range>", (1)
  5.     "exclude": ["<exclude_part>, ..."], (2)
  6.   }
  7. }
1Specify an IP address and range in CIDR notation. IP addresses are assigned from within this range of addresses.
2Optional: Specify a list of IP addresses and ranges in CIDR notation. IP addresses within an excluded address range are not assigned.

Static IP address assignment configuration example

You can configure ipam for static IP address assignment:

  1. {
  2.   "ipam": {
  3.     "type": "static",
  4.       "addresses": [
  5.         {
  6.           "address": "191.168.1.7"
  7.         }
  8.       ]
  9.   }
  10. }

Dynamic IP address assignment configuration example using DHCP

You can configure ipam for DHCP:

  1. {
  2.   "ipam": {
  3.     "type": "dhcp"
  4.   }
  5. }

Dynamic IP address assignment configuration example using Whereabouts

You can configure ipam to use Whereabouts:

  1. {
  2.   "ipam": {
  3.     "type": "whereabouts",
  4.     "range": "192.0.2.192/27",
  5.     "exclude": [
  6.        "192.0.2.192/30",
  7.        "192.0.2.196/32"
  8.     ]
  9.   }
  10. }

Configuring SR-IOV additional network

You can configure an additional network that uses SR-IOV hardware by creating a SriovIBNetwork object. When you create a SriovIBNetwork object, the SR-IOV Operator automatically creates a NetworkAttachmentDefinition object.

Do not modify or delete a SriovIBNetwork object if it is attached to any pods in the running state.

Prerequisites

  • Install the OpenShift CLI (oc).

  • Log in as a user with cluster-admin privileges.

Procedure

  1. Create a SriovIBNetwork object, and then save the YAML in the <name>.yaml file, where <name> is a name for this additional network. The object specification might resemble the following example:

    1. apiVersion: sriovnetwork.openshift.io/v1
    2. kind: SriovIBNetwork
    3. metadata:
    4.   name: attach1
    5.   namespace: openshift-sriov-network-operator
    6. spec:
    7.   resourceName: net1
    8.   networkNamespace: project2
    9.   ipam: |-
    10.     {
    11.       "type": "host-local",
    12.       "subnet": "10.56.217.0/24",
    13.       "rangeStart": "10.56.217.171",
    14.       "rangeEnd": "10.56.217.181",
    15.       "gateway": "10.56.217.1"
    16.     }

  2. To create the object, enter the following command:

    1. $ oc create -f <name>.yaml

    where <name> specifies the name of the additional network.

  3. Optional: To confirm that the NetworkAttachmentDefinition object that is associated with the SriovIBNetwork object that you created in the previous step exists, enter the following command. Replace <namespace> with the networkNamespace you specified in the SriovIBNetwork object.

    1. $ oc get net-attach-def -n <namespace>

Next steps

Additional resources