Skip to content

AliyunContainerService/terway

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

1,391 Commits
.github
.github
 
 
charts/terway
charts/terway
 
 
cmd
cmd
 
 
daemon
daemon
 
 
deploy/images
deploy/images
 
 
deviceplugin
deviceplugin
 
 
docs
docs
 
 
examples/maxpods
examples/maxpods
 
 
hack
hack
 
 
monitoring
monitoring
 
 
pkg
pkg
 
 
plugin
plugin
 
 
policy
policy
 
 
rpc
rpc
 
 
terraform
terraform
 
 
tests
tests
 
 
types
types
 
 
.dockerignore
.dockerignore
 
 
.gitignore
.gitignore
 
 
.golangci.yml
.golangci.yml
 
 
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
README-zh_CN.md
README-zh_CN.md
 
 
README.md
README.md
 
 
SECURITY.md
SECURITY.md
 
 
eni.conf
eni.conf
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 
terway-metric.yml
terway-metric.yml
 
 
terway-windows-eni.yml
terway-windows-eni.yml
 
 
terway-windows-eniip.yml
terway-windows-eniip.yml
 
 
terway-windows.yml
terway-windows.yml
 
 

Repository files navigation

Terway CNI Plugin

CNI plugin for Alibaba Cloud VPC/ENI

Go Report Card codecov Linter

English | 简体中文

Introduction

Terway is a self-developed CNI (Container Network Interface) plugin for ACK (Alibaba Cloud Kubernetes), built on Alibaba Cloud's Elastic Network Interface (ENI) technology. It optimizes cloud resource usage and enhances network performance. Terway supports eBPF for traffic acceleration, reducing latency, and adheres to Kubernetes Network Policy standards for container-to-container access control.

In Terway, each Pod has its own network stack and IP address. Pods on the same ECS (Elastic Compute Service) instance communicate directly, while cross-ECS Pod communication transits directly through VPC ENIs, avoiding encapsulation with technologies like VxLAN for higher communication performance.

Features

  • ENI Network Mode: Allocates ENIs to Pods for optimized resource utilization and network performance.
  • Trunking Feature: Allows Pods to have independent ENIs for flexible security group and switch configurations.
  • Node Pool Network Mode Configuration: Supports configuring node pools for exclusive ENI usage.
  • Security Policies: Supports NetworkPolicy and traditional security groups for multi-dimensional network security control.
  • High Performance: Utilizes eBPF for protocol stack acceleration, ensuring low latency and high throughput.
  • IPv6 Support: Dual-stack support for both IPv4 and IPv6.
  • Intelligent Computing Lingjun:Linjun support.

Deprecated Features

  • VPC Network Mode: Direct communication to VPC resources using VPC routing.

  • Exclusive ENI Mode: Direct ENI attachment to Pods for maximum performance.(Replace with configuring the network mode through node pool dimension as a dedicated ENI.)

Version Differences

ACK-provided versions are identical to the open-source version, except the Trunking feature is not available in self-hosted clusters.

Contributions

We warmly welcome community contributions! Whether it's bug fixes, new features, documentation improvements, or code enhancements, your help is appreciated.

Report Issues Submit Pull Request

Security

If you discover a security vulnerability in the code, please contact [email protected]. Refer to SECURITY.md for details.

Community

DingTalk

Join DingTalk group by DingTalkGroup id "35924643".

About

CNI plugin for Alibaba Cloud VPC/ENI

www.aliyun.com/product/kubernetes

Topics

vpc cni eni

Resources

Readme

License

Apache-2.0 license

Security policy

Security policy
Activity
Custom properties

Stars

559 stars

Watchers

16 watching

Forks

156 forks
Report repository

Releases 57

v1.13.4 Latest
Mar 7, 2025
+ 56 releases

Packages

No packages published

Contributors 35
+ 21 contributors

Languages