From 5b0d5f0b3dbd2c1393d4c549f97575da1adc2435 Mon Sep 17 00:00:00 2001 From: Nikhil Malik Date: Thu, 8 Feb 2024 17:35:19 +0900 Subject: [PATCH] BFD HA failover in L2 with connection sync CICD case --- cicd/k8s-calico-ipvs2-ha-ka-sync/README | 22 +++ cicd/k8s-calico-ipvs2-ha-ka-sync/Vagrantfile | 95 ++++++++++++ cicd/k8s-calico-ipvs2-ha-ka-sync/config.sh | 38 +++++ .../host_validation.sh | 22 +++ .../host_validation2.sh | 15 ++ .../host_validation2_with_sctp.sh | 39 +++++ .../host_validation_with_sctp.sh | 41 +++++ .../node_scripts/common.sh | 93 +++++++++++ .../node_scripts/host.sh | 5 + .../node_scripts/loxilb1.sh | 9 ++ .../node_scripts/loxilb2.sh | 9 ++ .../node_scripts/master.sh | 56 +++++++ .../node_scripts/worker.sh | 18 +++ cicd/k8s-calico-ipvs2-ha-ka-sync/rmconfig.sh | 6 + .../k8s-calico-ipvs2-ha-ka-sync/validation.sh | 146 ++++++++++++++++++ .../validation_with_sctp.sh | 146 ++++++++++++++++++ .../yaml/kube-loxilb.yml | 134 ++++++++++++++++ .../yaml/kubeadm-config.yaml | 69 +++++++++ .../yaml/sctp_fullnat.yml | 35 +++++ .../yaml/settings.yaml | 42 +++++ .../yaml/tcp_fullnat.yml | 33 ++++ .../yaml/udp_fullnat.yml | 30 ++++ cicd/k8s-calico-ipvs3-ha/validation.sh | 1 - .../validation_with_sctp.sh | 1 - 24 files changed, 1103 insertions(+), 2 deletions(-) create mode 100644 cicd/k8s-calico-ipvs2-ha-ka-sync/README create mode 100644 cicd/k8s-calico-ipvs2-ha-ka-sync/Vagrantfile create mode 100755 cicd/k8s-calico-ipvs2-ha-ka-sync/config.sh create mode 100755 cicd/k8s-calico-ipvs2-ha-ka-sync/host_validation.sh create mode 100755 cicd/k8s-calico-ipvs2-ha-ka-sync/host_validation2.sh create mode 100755 cicd/k8s-calico-ipvs2-ha-ka-sync/host_validation2_with_sctp.sh create mode 100755 cicd/k8s-calico-ipvs2-ha-ka-sync/host_validation_with_sctp.sh create mode 100644 cicd/k8s-calico-ipvs2-ha-ka-sync/node_scripts/common.sh create mode 100755 cicd/k8s-calico-ipvs2-ha-ka-sync/node_scripts/host.sh create mode 100644 cicd/k8s-calico-ipvs2-ha-ka-sync/node_scripts/loxilb1.sh create mode 100644 cicd/k8s-calico-ipvs2-ha-ka-sync/node_scripts/loxilb2.sh create mode 100644 cicd/k8s-calico-ipvs2-ha-ka-sync/node_scripts/master.sh create mode 100644 cicd/k8s-calico-ipvs2-ha-ka-sync/node_scripts/worker.sh create mode 100755 cicd/k8s-calico-ipvs2-ha-ka-sync/rmconfig.sh create mode 100755 cicd/k8s-calico-ipvs2-ha-ka-sync/validation.sh create mode 100755 cicd/k8s-calico-ipvs2-ha-ka-sync/validation_with_sctp.sh create mode 100644 cicd/k8s-calico-ipvs2-ha-ka-sync/yaml/kube-loxilb.yml create mode 100644 cicd/k8s-calico-ipvs2-ha-ka-sync/yaml/kubeadm-config.yaml create mode 100644 cicd/k8s-calico-ipvs2-ha-ka-sync/yaml/sctp_fullnat.yml create mode 100644 cicd/k8s-calico-ipvs2-ha-ka-sync/yaml/settings.yaml create mode 100644 cicd/k8s-calico-ipvs2-ha-ka-sync/yaml/tcp_fullnat.yml create mode 100644 cicd/k8s-calico-ipvs2-ha-ka-sync/yaml/udp_fullnat.yml diff --git a/cicd/k8s-calico-ipvs2-ha-ka-sync/README b/cicd/k8s-calico-ipvs2-ha-ka-sync/README new file mode 100644 index 00000000..c57a6487 --- /dev/null +++ b/cicd/k8s-calico-ipvs2-ha-ka-sync/README @@ -0,0 +1,22 @@ +## Test Case Description + +This scenario will demonstrate LoxiLB in L2 HA mode(clustering). The setup will have 2 LoxiLB nodes, K8s(1 Master Nodes & 2 Worker Nodes) cluster with Calico CNI in ipvs mode. LoxiLB will be running as external Service LB. Workloads will be spawned in all the cluster nodes. + +Highlights of this demo: +1) HA in L2 Mode +2) Sub-second HA failover detection +3) Connection sync + +Client will be connected to the LoxiLB with L2 network. Master LoxiLB will announce the Service IP to the client and cluster nodes. + +Service CIDR will also be a Virtual IP, a subnet of the K8s cluster network. + +In scenarios where LoxiLB runs outside of the cluster in HA mode, it is advised to create LB services in fullnat mode for ease of connectivity. + +If you wish to create this scenario in your lab then install Vagrant and follow the steps below: + +1. Run ./config.sh to setup the K8s cluster, client and LoxiLB nodes + +2. Run ./validation.sh to run the TCP HA test or ./validation_with_sctp.sh to run TCP & SCTP HA Test. Test Results will be displayed at the end. + +3. Run ./rmconfig.sh to cleanup the setup. diff --git a/cicd/k8s-calico-ipvs2-ha-ka-sync/Vagrantfile b/cicd/k8s-calico-ipvs2-ha-ka-sync/Vagrantfile new file mode 100644 index 00000000..7d0c83bd --- /dev/null +++ b/cicd/k8s-calico-ipvs2-ha-ka-sync/Vagrantfile @@ -0,0 +1,95 @@ +# -*- mode: ruby -*- +# vi: set ft=ruby : + +require "yaml" +settings = YAML.load_file "yaml/settings.yaml" + +workers = settings["nodes"]["workers"]["count"] +loxilbs = (ENV['LOXILBS'] || "2").to_i + +Vagrant.configure("2") do |config| + + if Vagrant.has_plugin?("vagrant-vbguest") + config.vbguest.auto_update = false + end + config.vm.define "host" do |host| + host.vm.hostname = 'host' + host.vm.box = settings["software"]["cluster"]["box"] + host.vm.network :private_network, ip: "192.168.80.9", :netmask => "255.255.255.0" + host.vm.provision :shell, :path => "node_scripts/host.sh" + host.vm.provider :virtualbox do |vbox| + vbox.customize ["modifyvm", :id, "--memory", 2048] + vbox.customize ["modifyvm", :id, "--cpus", 2] + end + end + + + + (1..loxilbs).each do |node_number| + config.vm.define "llb#{node_number}" do |loxilb| + loxilb.vm.box = settings["software"]["loxilb"]["box"]["name"] + loxilb.vm.box_version = settings["software"]["loxilb"]["box"]["version"] + loxilb.vm.hostname = "llb#{node_number}" + ip = node_number + 251 + loxilb.vm.network :private_network, ip: "192.168.80.#{ip}", :netmask => "255.255.255.0" + loxilb.vm.provision :shell, :path => "node_scripts/loxilb#{node_number}.sh" + loxilb.vm.provider :virtualbox do |vbox| + vbox.customize ["modifyvm", :id, "--memory", 6000] + vbox.customize ["modifyvm", :id, "--cpus", 4] + vbox.customize ["modifyvm", :id, "--nicpromisc2", "allow-all"] + end + end + end + + config.vm.define "master" do |master| + master.vm.box = settings["software"]["cluster"]["box"] + master.vm.hostname = 'master' + master.vm.network :private_network, ip: settings["network"]["control_ip"], :netmask => "255.255.255.0" + master.vm.provision "shell", + env: { + "DNS_SERVERS" => settings["network"]["dns_servers"].join(" "), + "ENVIRONMENT" => settings["environment"], + "KUBERNETES_VERSION" => settings["software"]["kubernetes"], + "OS" => settings["software"]["os"] + }, + path: "node_scripts/common.sh" + master.vm.provision "shell", + env: { + "CALICO_VERSION" => settings["software"]["calico"], + "CONTROL_IP" => settings["network"]["control_ip"], + "POD_CIDR" => settings["network"]["pod_cidr"], + "SERVICE_CIDR" => settings["network"]["service_cidr"] + }, + path: "node_scripts/master.sh" + + master.vm.provider :virtualbox do |vbox| + vbox.customize ["modifyvm", :id, "--memory", 4096] + vbox.customize ["modifyvm", :id, "--cpus", 2] + vbox.customize ["modifyvm", :id, "--nicpromisc2", "allow-all"] + end + end + + (1..workers).each do |node_number| + config.vm.define "worker#{node_number}" do |worker| + worker.vm.box = settings["software"]["cluster"]["box"] + worker.vm.hostname = "worker#{node_number}" + ip = node_number + 200 + worker.vm.network :private_network, ip: "192.168.80.#{ip}", :netmask => "255.255.255.0" + worker.vm.provision "shell", + env: { + "DNS_SERVERS" => settings["network"]["dns_servers"].join(" "), + "ENVIRONMENT" => settings["environment"], + "KUBERNETES_VERSION" => settings["software"]["kubernetes"], + "OS" => settings["software"]["os"] + }, + path: "node_scripts/common.sh" + worker.vm.provision "shell", path: "node_scripts/worker.sh" + + worker.vm.provider :virtualbox do |vbox| + vbox.customize ["modifyvm", :id, "--memory", 4096] + vbox.customize ["modifyvm", :id, "--cpus", 2] + vbox.customize ["modifyvm", :id, "--nicpromisc2", "allow-all"] + end + end + end +end diff --git a/cicd/k8s-calico-ipvs2-ha-ka-sync/config.sh b/cicd/k8s-calico-ipvs2-ha-ka-sync/config.sh new file mode 100755 index 00000000..2d0399dd --- /dev/null +++ b/cicd/k8s-calico-ipvs2-ha-ka-sync/config.sh @@ -0,0 +1,38 @@ +#!/bin/bash +VMs=$(vagrant global-status | grep -i virtualbox) +while IFS= read -a VMs; do + read -a vm <<< "$VMs" + cd ${vm[4]} 2>&1>/dev/null + echo "Destroying ${vm[1]}" + vagrant destroy -f ${vm[1]} + cd - 2>&1>/dev/null +done <<< "$VMs" + +vagrant up + +for((i=1; i<=60; i++)) +do + fin=1 + pods=$(vagrant ssh master -c 'kubectl get pods -A' 2> /dev/null | grep -v "NAMESPACE") + + while IFS= read -a pods; do + read -a pod <<< "$pods" + if [[ ${pod[3]} != *"Running"* ]]; then + echo "${pod[1]} is not UP yet" + fin=0 + fi + done <<< "$pods" + if [ $fin == 1 ]; + then + break; + fi + echo "Will try after 10s" + sleep 10 +done + +sudo sysctl net.ipv4.conf.vboxnet1.arp_accept=1 + +#Create fullnat Service +vagrant ssh master -c 'kubectl apply -f /vagrant/yaml/tcp_fullnat.yml' 2> /dev/null +vagrant ssh master -c 'kubectl apply -f /vagrant/yaml/sctp_fullnat.yml' 2> /dev/null +#vagrant ssh master -c 'kubectl apply -f https://raw.githubusercontent.com/loxilb-io/kube-loxilb/main/manifest/mesh/loxilb-mesh.yml' 2> /dev/null diff --git a/cicd/k8s-calico-ipvs2-ha-ka-sync/host_validation.sh b/cicd/k8s-calico-ipvs2-ha-ka-sync/host_validation.sh new file mode 100755 index 00000000..371ee382 --- /dev/null +++ b/cicd/k8s-calico-ipvs2-ha-ka-sync/host_validation.sh @@ -0,0 +1,22 @@ +#!/bin/bash +extIP=$(cat /vagrant/extIP) + +code=0 + +echo Service IP: $extIP + +neigh=$( ip neigh | grep $extIP ) + +if [[ ! -z $neigh && $neigh != *"FAILED"* ]]; then + echo "Host route [OK]" +else + echo "Host route [NOK]" +fi +echo -e "\n*********************************************" +echo "Testing Service" +echo "*********************************************" + +# iperf client accessing fullnat service +stdbuf -oL nohup iperf -c 192.168.80.5 -p 56002 -t 60 -i 1 -b 100M &> iperff.out & +echo "iperf client started" +echo "phase-1 done" diff --git a/cicd/k8s-calico-ipvs2-ha-ka-sync/host_validation2.sh b/cicd/k8s-calico-ipvs2-ha-ka-sync/host_validation2.sh new file mode 100755 index 00000000..f4995def --- /dev/null +++ b/cicd/k8s-calico-ipvs2-ha-ka-sync/host_validation2.sh @@ -0,0 +1,15 @@ +#!/bin/bash + +pkill iperf + +iperff_res=$(tail -n 1 iperff.out | xargs | cut -d ' ' -f 7) + +if [[ $iperff_res != 0 ]]; then + echo -e "K8s-calico-ipvs2-ha-ka-sync TCP\t\t(fullnat)\t[OK]" +else + echo -e "K8s-calico-ipvs2-ha-ka-sync TCP\t\t(fullnat)\t[FAILED]" + code=1 +fi + +rm *.out +exit $code diff --git a/cicd/k8s-calico-ipvs2-ha-ka-sync/host_validation2_with_sctp.sh b/cicd/k8s-calico-ipvs2-ha-ka-sync/host_validation2_with_sctp.sh new file mode 100755 index 00000000..caa0d6d0 --- /dev/null +++ b/cicd/k8s-calico-ipvs2-ha-ka-sync/host_validation2_with_sctp.sh @@ -0,0 +1,39 @@ +#!/bin/bash +for((i=0;i<50;i++)) +do +echo "snd=100" 1> sd1.pipe +sleep 1 +done + + +echo "stats" 1> sd1.pipe + +echo "shutdown" 1> sd1.pipe + +pkill iperf +pkill sctp_darn + +iperff_res=$(tail -n 1 iperff.out | xargs | cut -d ' ' -f 7) + +sdf_res=$(grep -i "Client: Sending packets.(100000/100000)" sdf.out) + +sdf_res1=$(grep -i "packets sent" sdf.out | xargs | cut -d ' ' -f 3) +sdf_res2=$(grep -i "packets rec" sdf.out | xargs | cut -d ' ' -f 3) + +if [[ $iperff_res != 0 ]]; then + echo -e "K8s-calico-ipvs2-ha-ka-sync TCP\t\t(fullnat)\t[OK]" +else + echo -e "K8s-calico-ipvs2-ha-ka-sync TCP\t\t(fullnat)\t[FAILED]" + code=1 +fi + +if [[ $sdf_res1 != 0 && $sdf_res2 != 0 && $sdf_res1 == $sdf_res2 ]]; then + echo -e "K8s-calico-ipvs2-ha-ka-sync SCTP\t(fullnat)\t[OK]" +else + echo -e "K8s-calico-ipvs2-ha-ka-sync SCTP\t(fullnat)\t[FAILED]" + code=1 +fi + +rm *.pipe +rm *.out +exit $code diff --git a/cicd/k8s-calico-ipvs2-ha-ka-sync/host_validation_with_sctp.sh b/cicd/k8s-calico-ipvs2-ha-ka-sync/host_validation_with_sctp.sh new file mode 100755 index 00000000..266f314d --- /dev/null +++ b/cicd/k8s-calico-ipvs2-ha-ka-sync/host_validation_with_sctp.sh @@ -0,0 +1,41 @@ +#!/bin/bash +extIP=$(cat /vagrant/extIP) + +code=0 + +echo Service IP: $extIP + +neigh=$( ip neigh | grep $extIP ) + +if [[ ! -z $neigh && $neigh != *"FAILED"* ]]; then + echo "Host route [OK]" +else + echo "Host route [NOK]" +fi +echo -e "\n*********************************************" +echo "Testing Service" +echo "*********************************************" + +# iperf client accessing fullnat service +stdbuf -oL nohup iperf -c 192.168.80.5 -p 56002 -t 100 -i 1 -b 100M &> iperff.out & + +echo "iperf client started" + +sleep 1 + +mkfifo sd1.pipe + +sleep infinity > sd1.pipe & + +stdbuf -oL nohup sctp_darn -H 192.168.80.9 -h 192.168.80.5 -p 56004 -s -I < sd1.pipe &> sdf.out & + +echo "sctp_test client started" + +sleep 2 +for((i=0;i<30;i++)) +do +echo "snd=100" 1> sd1.pipe +sleep 1 +done +echo "phase-1 done" +exit 0 diff --git a/cicd/k8s-calico-ipvs2-ha-ka-sync/node_scripts/common.sh b/cicd/k8s-calico-ipvs2-ha-ka-sync/node_scripts/common.sh new file mode 100644 index 00000000..b8634194 --- /dev/null +++ b/cicd/k8s-calico-ipvs2-ha-ka-sync/node_scripts/common.sh @@ -0,0 +1,93 @@ +#!/bin/bash +# +# Common setup for all servers (Control Plane and Nodes) + +set -euxo pipefail + +# Variable Declaration + +# DNS Setting +if [ ! -d /etc/systemd/resolved.conf.d ]; then + sudo mkdir /etc/systemd/resolved.conf.d/ +fi +cat </dev/null; echo "@reboot /sbin/swapoff -a") | crontab - || true +sudo apt-get update -y +# Install CRI-O Runtime + +VERSION="$(echo ${KUBERNETES_VERSION} | grep -oE '[0-9]+\.[0-9]+')" + +# Create the .conf file to load the modules at bootup +cat <> /etc/default/crio << EOF +${ENVIRONMENT} +EOF +sudo systemctl daemon-reload +sudo systemctl enable crio --now + +echo "CRI runtime installed successfully" + +sudo apt-get update +sudo apt-get install -y apt-transport-https ca-certificates curl +curl -fsSL https://packages.cloud.google.com/apt/doc/apt-key.gpg | sudo gpg --dearmor -o /etc/apt/keyrings/kubernetes-archive-keyring.gpg + +echo "deb [signed-by=/etc/apt/keyrings/kubernetes-archive-keyring.gpg] https://apt.kubernetes.io/ kubernetes-xenial main" | sudo tee /etc/apt/sources.list.d/kubernetes.list +sudo apt-get update -y +sudo apt-get install -y kubelet="$KUBERNETES_VERSION" kubectl="$KUBERNETES_VERSION" kubeadm="$KUBERNETES_VERSION" +sudo apt-get update -y +sudo apt-get install -y jq +sudo apt-get install -y ipvsadm + +local_ip="$(ip --json a s | jq -r '.[] | if .ifname == "eth1" then .addr_info[] | if .family == "inet" then .local else empty end else empty end')" +cat > /etc/default/kubelet << EOF +KUBELET_EXTRA_ARGS=--node-ip=$local_ip +${ENVIRONMENT} +EOF diff --git a/cicd/k8s-calico-ipvs2-ha-ka-sync/node_scripts/host.sh b/cicd/k8s-calico-ipvs2-ha-ka-sync/node_scripts/host.sh new file mode 100755 index 00000000..2fa1db28 --- /dev/null +++ b/cicd/k8s-calico-ipvs2-ha-ka-sync/node_scripts/host.sh @@ -0,0 +1,5 @@ +# Install Bird to work with k3s +sudo apt-get update +sudo apt-get -y install lksctp-tools iperf + +echo "Host is up" diff --git a/cicd/k8s-calico-ipvs2-ha-ka-sync/node_scripts/loxilb1.sh b/cicd/k8s-calico-ipvs2-ha-ka-sync/node_scripts/loxilb1.sh new file mode 100644 index 00000000..1a99395b --- /dev/null +++ b/cicd/k8s-calico-ipvs2-ha-ka-sync/node_scripts/loxilb1.sh @@ -0,0 +1,9 @@ +export LOXILB_IP=$(ip a |grep global | grep -v '10.0.2.15' | grep -v '192.168.80' | awk '{print $2}' | cut -f1 -d '/') + +apt-get update +apt-get install -y software-properties-common +curl -fsSL https://download.docker.com/linux/ubuntu/gpg | sudo apt-key add - +add-apt-repository -y "deb [arch=amd64] https://download.docker.com/linux/ubuntu $(lsb_release -cs) stable" +apt-get update +apt-get install -y docker-ce +docker run -u root --cap-add SYS_ADMIN --restart unless-stopped --privileged -dit -v /dev/log:/dev/log --net=host --name loxilb ghcr.io/loxilb-io/loxilb:latest --cluster=192.168.80.253 --self=0 --ka=192.168.80.253 diff --git a/cicd/k8s-calico-ipvs2-ha-ka-sync/node_scripts/loxilb2.sh b/cicd/k8s-calico-ipvs2-ha-ka-sync/node_scripts/loxilb2.sh new file mode 100644 index 00000000..c09d17bc --- /dev/null +++ b/cicd/k8s-calico-ipvs2-ha-ka-sync/node_scripts/loxilb2.sh @@ -0,0 +1,9 @@ +export LOXILB_IP=$(ip a |grep global | grep -v '10.0.2.15' | grep -v '192.168.80' | awk '{print $2}' | cut -f1 -d '/') + +apt-get update +apt-get install -y software-properties-common +curl -fsSL https://download.docker.com/linux/ubuntu/gpg | sudo apt-key add - +add-apt-repository -y "deb [arch=amd64] https://download.docker.com/linux/ubuntu $(lsb_release -cs) stable" +apt-get update +apt-get install -y docker-ce +docker run -u root --cap-add SYS_ADMIN --restart unless-stopped --privileged -dit -v /dev/log:/dev/log --net=host --name loxilb ghcr.io/loxilb-io/loxilb:latest --cluster=192.168.80.252 --self=1 --ka=192.168.80.252 diff --git a/cicd/k8s-calico-ipvs2-ha-ka-sync/node_scripts/master.sh b/cicd/k8s-calico-ipvs2-ha-ka-sync/node_scripts/master.sh new file mode 100644 index 00000000..41793b5f --- /dev/null +++ b/cicd/k8s-calico-ipvs2-ha-ka-sync/node_scripts/master.sh @@ -0,0 +1,56 @@ +#!/bin/bash +# +# Setup for Control Plane (Master) servers + +set -euxo pipefail + +NODENAME=$(hostname -s) + +sudo kubeadm config images pull + +echo "Preflight Check Passed: Downloaded All Required Images" + +#sudo kubeadm init --apiserver-advertise-address=$CONTROL_IP --apiserver-cert-extra-sans=$CONTROL_IP --pod-network-cidr=$POD_CIDR --service-cidr=$SERVICE_CIDR --node-name "$NODENAME" --ignore-preflight-errors Swap +sudo kubeadm init --ignore-preflight-errors Swap --config /vagrant/yaml/kubeadm-config.yaml + +mkdir -p "$HOME"/.kube +sudo cp -i /etc/kubernetes/admin.conf "$HOME"/.kube/config +sudo chown "$(id -u)":"$(id -g)" "$HOME"/.kube/config + +# Save Configs to shared /Vagrant location + +# For Vagrant re-runs, check if there is existing configs in the location and delete it for saving new configuration. + +config_path="/vagrant/configs" + +if [ -d $config_path ]; then + rm -f $config_path/* +else + mkdir -p $config_path +fi + +cp -i /etc/kubernetes/admin.conf $config_path/config +touch $config_path/join.sh +chmod +x $config_path/join.sh + +kubeadm token create --print-join-command > $config_path/join.sh + +# Install Calico Network Plugin + +curl https://raw.githubusercontent.com/projectcalico/calico/v${CALICO_VERSION}/manifests/calico.yaml -O + +kubectl apply -f calico.yaml + +sudo -i -u vagrant bash << EOF +whoami +mkdir -p /home/vagrant/.kube +sudo cp -i $config_path/config /home/vagrant/.kube/ +sudo chown 1000:1000 /home/vagrant/.kube/config +EOF + +# Install Metrics Server + +kubectl apply -f https://raw.githubusercontent.com/techiescamp/kubeadm-scripts/main/manifests/metrics-server.yaml + +# Install loxilb +kubectl apply -f /vagrant/yaml/kube-loxilb.yml diff --git a/cicd/k8s-calico-ipvs2-ha-ka-sync/node_scripts/worker.sh b/cicd/k8s-calico-ipvs2-ha-ka-sync/node_scripts/worker.sh new file mode 100644 index 00000000..a5754170 --- /dev/null +++ b/cicd/k8s-calico-ipvs2-ha-ka-sync/node_scripts/worker.sh @@ -0,0 +1,18 @@ +#!/bin/bash +# +# Setup for Node servers + +set -euxo pipefail + +config_path="/vagrant/configs" + +/bin/bash $config_path/join.sh -v + +sudo -i -u vagrant bash << EOF +whoami +mkdir -p /home/vagrant/.kube +sudo cp -i $config_path/config /home/vagrant/.kube/ +sudo chown 1000:1000 /home/vagrant/.kube/config +NODENAME=$(hostname -s) +kubectl label node $(hostname -s) node-role.kubernetes.io/worker=worker +EOF diff --git a/cicd/k8s-calico-ipvs2-ha-ka-sync/rmconfig.sh b/cicd/k8s-calico-ipvs2-ha-ka-sync/rmconfig.sh new file mode 100755 index 00000000..6cadc7e4 --- /dev/null +++ b/cicd/k8s-calico-ipvs2-ha-ka-sync/rmconfig.sh @@ -0,0 +1,6 @@ +#!/bin/bash +vagrant destroy -f worker2 +vagrant destroy -f worker1 +vagrant destroy -f master +vagrant destroy -f llb1 +vagrant destroy -f llb2 diff --git a/cicd/k8s-calico-ipvs2-ha-ka-sync/validation.sh b/cicd/k8s-calico-ipvs2-ha-ka-sync/validation.sh new file mode 100755 index 00000000..146dc60a --- /dev/null +++ b/cicd/k8s-calico-ipvs2-ha-ka-sync/validation.sh @@ -0,0 +1,146 @@ +#!/bin/bash +source ../common.sh +echo k8s-calico-ipvs2-ha-ka-sync + +if [ "$1" ]; then + KUBECONFIG="$1" +fi + +# Set space as the delimiter +IFS=' ' + +for((i=0; i<120; i++)) +do + extLB=$(vagrant ssh master -c 'kubectl get svc' 2> /dev/null | grep "tcp-lb-fullnat") + read -a strarr <<< "$extLB" + len=${#strarr[*]} + if [[ $((len)) -lt 6 ]]; then + echo "Can't find tcp-lb service" + sleep 1 + continue + fi + if [[ ${strarr[3]} != *"none"* ]]; then + extIP="$(cut -d'-' -f2 <<<${strarr[3]})" + break + fi + echo "No external LB allocated" + sleep 1 +done + +## Any routing updates ?? +#sleep 30 + +echo Service IP : $extIP +echo $extIP > extIP + +echo -e "\nEnd Points List" +echo "******************************************************************************" +vagrant ssh master -c 'kubectl get endpoints -A' 2> /dev/null +echo "******************************************************************************" +echo -e "\nSVC List" +echo "******************************************************************************" +vagrant ssh master -c 'kubectl get svc' 2> /dev/null +echo "******************************************************************************" +echo -e "\nPod List" +echo "******************************************************************************" +vagrant ssh master -c 'kubectl get pods -A' 2> /dev/null +echo "******************************************************************************" +echo -e "\nLB List" +echo -e "\n---- LLB1 ----" +echo "******************************************************************************" +vagrant ssh llb1 -c 'sudo docker exec -it loxilb loxicmd get lb -o wide' 2> /dev/null +echo "******************************************************************************" +echo -e "\n---- LLB2 ----" +vagrant ssh llb2 -c 'sudo docker exec -it loxilb loxicmd get lb -o wide' 2> /dev/null +echo "******************************************************************************" +echo -e "\nEP List" +echo -e "\n---- LLB1 ----" +echo "******************************************************************************" +vagrant ssh llb1 -c 'sudo docker exec -it loxilb loxicmd get ep -o wide' 2> /dev/null +echo "******************************************************************************" +echo -e "\n---- LLB2 ----" +echo "******************************************************************************" +vagrant ssh llb2 -c 'sudo docker exec -it loxilb loxicmd get ep -o wide' 2> /dev/null +echo "******************************************************************************" + +echo -e "\nTEST RESULTS" +echo "******************************************************************************" +master="llb1" +backup="llb2" +mip="192.168.80.252" +bip="192.168.80.253" + +state=$(curl -sX 'GET' 'http://192.168.80.252:11111/netlox/v1/config/cistate/all' -H 'accept: application/json') + +if [[ $state == *"BACKUP"* ]]; then + master="llb2" + backup="llb1" + mip="192.168.80.253" + bip="192.168.80.252" +fi + +echo -e "\n MASTER\t: $master" +echo -e " BACKUP\t: $backup\n" + +vagrant ssh host -c 'sudo /vagrant/host_validation.sh' 2> /dev/null + +sleep 15 +echo -e "phase-2 begins..\n" + +count=1 +sync=0 +while [[ $count -le 5 ]] ; do +echo -e "\nStatus at MASTER:$master\n" +vagrant ssh $master -c "sudo docker exec -it loxilb loxicmd get ct | grep est" + +echo -e "\nStatus at BACKUP:$backup\n" +vagrant ssh $backup -c "sudo docker exec -it loxilb loxicmd get ct | grep est" + +nres1=$(curl -sX 'GET' 'http://'$mip':11111/netlox/v1/config/conntrack/all' -H 'accept: application/json' | grep -ow "\"conntrackState\":\"est\"" | wc -l) +nres2=$(curl -sX 'GET' 'http://'$bip':11111/netlox/v1/config/conntrack/all' -H 'accept: application/json' | grep -ow "\"conntrackState\":\"est\"" | wc -l) + +if [[ $nres1 == 0 ]]; then + echo -e "No active connections in Master:$master. Exiting!" + vagrant ssh host -c 'sudo pkill iperf; sudo pkill sctp_test; sudo rm -rf *.out' + exit 1 +fi + +if [[ $nres1 == $nres2 && $nres1 != 0 ]]; then + echo -e "\nConnections sync successful!!!\n" + sync=1 + break; +fi +echo -e "\nConnections sync pending.. Let's wait a little more..\n" +count=$(( $count + 1 )) +sleep 2 +done + +if [[ $sync == 0 ]]; then + echo -e "\nConnection Sync failed\n" + vagrant ssh host -c 'sudo pkill iperf; sudo pkill sctp_test; sudo rm -rf *.out' + exit 1 +fi + +echo "Restarting MASTER:$master.." +vagrant ssh $master -c 'sudo docker restart loxilb' 2> /dev/null + +echo "Checking state change.." +for(( i=0;i<20;i++ )) +do +state=$(curl -sX 'GET' 'http://'$bip':11111/netlox/v1/config/cistate/all' -H 'accept: application/json') +if [[ $state == *"MASTER"* ]]; then + echo "State change detected in $(( 100 * $i ))ms" + break; +else + sleep 0.1 +fi +done +if [[ $i == 20 ]]; then + echo -e "$backup CURRENT state - $state." + echo -e "\nState changed not detected after 1s.\n" + echo -e "$backup EXPECTED state - MASTER." + vagrant ssh host -c 'sudo pkill iperf; sudo pkill sctp_test; sudo rm -rf *.out' + exit 1 +fi +sudo rm extIP +vagrant ssh host -c 'sudo /vagrant/host_validation2.sh' 2> /dev/null diff --git a/cicd/k8s-calico-ipvs2-ha-ka-sync/validation_with_sctp.sh b/cicd/k8s-calico-ipvs2-ha-ka-sync/validation_with_sctp.sh new file mode 100755 index 00000000..1379f697 --- /dev/null +++ b/cicd/k8s-calico-ipvs2-ha-ka-sync/validation_with_sctp.sh @@ -0,0 +1,146 @@ +#!/bin/bash +source ../common.sh +echo k8s-calico-ipvs2-ha-ka-sync + +if [ "$1" ]; then + KUBECONFIG="$1" +fi + +# Set space as the delimiter +IFS=' ' + +for((i=0; i<120; i++)) +do + extLB=$(vagrant ssh master -c 'kubectl get svc' 2> /dev/null | grep "tcp-lb-fullnat") + read -a strarr <<< "$extLB" + len=${#strarr[*]} + if [[ $((len)) -lt 6 ]]; then + echo "Can't find tcp-lb service" + sleep 1 + continue + fi + if [[ ${strarr[3]} != *"none"* ]]; then + extIP="$(cut -d'-' -f2 <<<${strarr[3]})" + break + fi + echo "No external LB allocated" + sleep 1 +done + +## Any routing updates ?? +#sleep 30 + +echo Service IP : $extIP +echo $extIP > extIP +echo -e "\nEnd Points List" +echo "******************************************************************************" +vagrant ssh master -c 'kubectl get endpoints -A' 2> /dev/null +echo "******************************************************************************" +echo -e "\nSVC List" +echo "******************************************************************************" +vagrant ssh master -c 'kubectl get svc' 2> /dev/null +echo "******************************************************************************" +echo -e "\nPod List" +echo "******************************************************************************" +vagrant ssh master -c 'kubectl get pods -A' 2> /dev/null +echo "******************************************************************************" +echo -e "\nLB List" +echo -e "\n---- LLB1 ----" +echo "******************************************************************************" +vagrant ssh llb1 -c 'sudo docker exec -it loxilb loxicmd get lb -o wide' 2> /dev/null +echo "******************************************************************************" +echo -e "\n---- LLB2 ----" +vagrant ssh llb2 -c 'sudo docker exec -it loxilb loxicmd get lb -o wide' 2> /dev/null +echo "******************************************************************************" +echo -e "\nEP List" +echo -e "\n---- LLB1 ----" +echo "******************************************************************************" +vagrant ssh llb1 -c 'sudo docker exec -it loxilb loxicmd get ep -o wide' 2> /dev/null +echo "******************************************************************************" +echo -e "\n---- LLB2 ----" +echo "******************************************************************************" +vagrant ssh llb2 -c 'sudo docker exec -it loxilb loxicmd get ep -o wide' 2> /dev/null +echo "******************************************************************************" + +echo -e "\nTEST RESULTS" +echo "******************************************************************************" + +master="llb1" +backup="llb2" +mip="192.168.80.252" +bip="192.168.80.253" + +state=$(curl -sX 'GET' 'http://192.168.80.252:11111/netlox/v1/config/cistate/all' -H 'accept: application/json') + +if [[ $state == *"BACKUP"* ]]; then + master="llb2" + backup="llb1" + mip="192.168.80.253" + bip="192.168.80.252" +fi + +echo -e "\n MASTER\t: $master" +echo -e " BACKUP\t: $backup\n" + +vagrant ssh host -c 'sudo /vagrant/host_validation_with_sctp.sh' 2> /dev/null + +#sleep 15 +echo -e "phase-2 begins..\n" + +count=1 +sync=0 +while [[ $count -le 5 ]] ; do +echo -e "\nStatus at MASTER:$master\n" +vagrant ssh $master -c "sudo docker exec -it loxilb loxicmd get ct | grep est" + +echo -e "\nStatus at BACKUP:$backup\n" +vagrant ssh $backup -c "sudo docker exec -it loxilb loxicmd get ct | grep est" + +nres1=$(curl -sX 'GET' 'http://'$mip':11111/netlox/v1/config/conntrack/all' -H 'accept: application/json' | grep -ow "\"conntrackState\":\"est\"" | wc -l) +nres2=$(curl -sX 'GET' 'http://'$bip':11111/netlox/v1/config/conntrack/all' -H 'accept: application/json' | grep -ow "\"conntrackState\":\"est\"" | wc -l) + +if [[ $nres1 == 0 ]]; then + echo -e "No active connections in Master:$master. Exiting!" + vagrant ssh host -c 'sudo pkill iperf; sudo pkill sctp_test; sudo rm -rf *.out' + exit 1 +fi + +if [[ $nres1 == $nres2 && $nres1 != 0 ]]; then + echo -e "\nConnections sync successful!!!\n" + sync=1 + break; +fi +echo -e "\nConnections sync pending.. Let's wait a little more..\n" +count=$(( $count + 1 )) +sleep 2 +done + +if [[ $sync == 0 ]]; then + echo -e "\nConnection Sync failed\n" + vagrant ssh host -c 'sudo pkill iperf; sudo pkill sctp_test; sudo rm -rf *.out' + exit 1 +fi + +echo "Restarting MASTER:$master.." +vagrant ssh $master -c 'sudo docker restart loxilb' 2> /dev/null + +echo "Checking state change.." +for(( i=0;i<20;i++ )) +do +state=$(curl -sX 'GET' 'http://'$bip':11111/netlox/v1/config/cistate/all' -H 'accept: application/json') +if [[ $state == *"MASTER"* ]]; then + echo "State change detected in $(( 100 * $i ))ms" + break; +else + sleep 0.1 +fi +done +if [[ $i == 20 ]]; then + echo -e "$backup CURRENT state - $state." + echo -e "\nState changed not detected after 1s.\n" + echo -e "$backup EXPECTED state - MASTER." + vagrant ssh host -c 'sudo pkill iperf; sudo pkill sctp_test; sudo rm -rf *.out' + exit 1 +fi +sudo rm extIP +vagrant ssh host -c 'sudo /vagrant/host_validation2_with_sctp.sh' 2> /dev/null diff --git a/cicd/k8s-calico-ipvs2-ha-ka-sync/yaml/kube-loxilb.yml b/cicd/k8s-calico-ipvs2-ha-ka-sync/yaml/kube-loxilb.yml new file mode 100644 index 00000000..0c8b3f25 --- /dev/null +++ b/cicd/k8s-calico-ipvs2-ha-ka-sync/yaml/kube-loxilb.yml @@ -0,0 +1,134 @@ +--- +apiVersion: v1 +kind: ServiceAccount +metadata: + name: kube-loxilb + namespace: kube-system +--- +kind: ClusterRole +apiVersion: rbac.authorization.k8s.io/v1 +metadata: + name: kube-loxilb +rules: + - apiGroups: + - "" + resources: + - nodes + verbs: + - get + - watch + - list + - patch + - apiGroups: + - "" + resources: + - pods + verbs: + - get + - watch + - list + - patch + - apiGroups: + - "" + resources: + - endpoints + - services + - services/status + verbs: + - get + - watch + - list + - patch + - update + - apiGroups: + - discovery.k8s.io + resources: + - endpointslices + verbs: + - get + - watch + - list + - apiGroups: + - authentication.k8s.io + resources: + - tokenreviews + verbs: + - create + - apiGroups: + - authorization.k8s.io + resources: + - subjectaccessreviews + verbs: + - create +--- +kind: ClusterRoleBinding +apiVersion: rbac.authorization.k8s.io/v1 +metadata: + name: kube-loxilb +roleRef: + apiGroup: rbac.authorization.k8s.io + kind: ClusterRole + name: kube-loxilb +subjects: + - kind: ServiceAccount + name: kube-loxilb + namespace: kube-system +--- +apiVersion: apps/v1 +kind: Deployment +metadata: + name: kube-loxilb + namespace: kube-system + labels: + app: loxilb +spec: + replicas: 1 + selector: + matchLabels: + app: loxilb + template: + metadata: + labels: + app: loxilb + spec: + hostNetwork: true + tolerations: + - effect: NoSchedule + operator: Exists + # Mark the pod as a critical add-on for rescheduling. + - key: CriticalAddonsOnly + operator: Exists + - effect: NoExecute + operator: Exists + priorityClassName: system-node-critical + serviceAccountName: kube-loxilb + terminationGracePeriodSeconds: 0 + containers: + - name: kube-loxilb + image: ghcr.io/loxilb-io/kube-loxilb:latest + imagePullPolicy: Always + command: + - /bin/kube-loxilb + args: + - --loxiURL=http://192.168.80.252:11111,http://192.168.80.253:11111 + - --externalCIDR=192.168.80.5/32 + #- --externalSecondaryCIDRs=124.124.124.1/24,125.125.125.1/24 + #- --monitor + #- --setBGP=64511 + #- --extBGPPeers=50.50.50.1:65101,51.51.51.1:65102 + #- --setRoles=0.0.0.0 + #- --monitor + #- --setBGP + #- --setLBMode=1 + #- --config=/opt/loxilb/agent/kube-loxilb.conf + resources: + requests: + cpu: "100m" + memory: "50Mi" + limits: + cpu: "100m" + memory: "50Mi" + securityContext: + privileged: true + capabilities: + add: ["NET_ADMIN", "NET_RAW"] diff --git a/cicd/k8s-calico-ipvs2-ha-ka-sync/yaml/kubeadm-config.yaml b/cicd/k8s-calico-ipvs2-ha-ka-sync/yaml/kubeadm-config.yaml new file mode 100644 index 00000000..31afe601 --- /dev/null +++ b/cicd/k8s-calico-ipvs2-ha-ka-sync/yaml/kubeadm-config.yaml @@ -0,0 +1,69 @@ +apiVersion: kubeadm.k8s.io/v1beta3 +bootstrapTokens: +- groups: + - system:bootstrappers:kubeadm:default-node-token + ttl: 24h0m0s + usages: + - signing + - authentication +kind: InitConfiguration +localAPIEndpoint: + advertiseAddress: 192.168.80.250 + bindPort: 6443 +nodeRegistration: + imagePullPolicy: IfNotPresent + name: master + taints: null +--- +apiVersion: kubeadm.k8s.io/v1beta3 +certificatesDir: /etc/kubernetes/pki +kind: ClusterConfiguration +apiServer: + timeoutForControlPlane: 4m0s + certSANs: + - 192.168.80.250 +controlPlaneEndpoint: 192.168.80.250:6443 +clusterName: kubernetes +controllerManager: {} +dns: {} +etcd: + local: + dataDir: /var/lib/etcd +imageRepository: registry.k8s.io +kubernetesVersion: v1.27.5 +networking: + dnsDomain: cluster.local + podSubnet: 172.16.1.0/16 + serviceSubnet: 172.17.1.0/18 +scheduler: {} +--- +apiVersion: kubeproxy.config.k8s.io/v1alpha1 +bindAddress: 0.0.0.0 +clientConnection: + acceptContentTypes: "" + burst: 10 + contentType: application/vnd.kubernetes.protobuf + kubeconfig: /var/lib/kube-proxy/kubeconfig.conf + qps: 5 +clusterCIDR: "" +configSyncPeriod: 15m0s +#featureGates: "SupportIPVSProxyMode=true" +mode: ipvs +enableProfiling: false +healthzBindAddress: 0.0.0.0:10256 +hostnameOverride: "" +iptables: + masqueradeAll: false + masqueradeBit: 14 + minSyncPeriod: 0s + syncPeriod: 30s +ipvs: + excludeCIDRs: null + minSyncPeriod: 0s + scheduler: "" + syncPeriod: 30s +kind: KubeProxyConfiguration +metricsBindAddress: 127.0.0.1:10249 +nodePortAddresses: null +oomScoreAdj: -999 +portRange: "" diff --git a/cicd/k8s-calico-ipvs2-ha-ka-sync/yaml/sctp_fullnat.yml b/cicd/k8s-calico-ipvs2-ha-ka-sync/yaml/sctp_fullnat.yml new file mode 100644 index 00000000..e010624f --- /dev/null +++ b/cicd/k8s-calico-ipvs2-ha-ka-sync/yaml/sctp_fullnat.yml @@ -0,0 +1,35 @@ +apiVersion: v1 +kind: Service +metadata: + name: sctp-lb-fullnat + annotations: + loxilb.io/lbmode: "fullnat" + loxilb.io/liveness: "yes" + loxilb.io/probetype: "ping" +spec: + externalTrafficPolicy: Local + loadBalancerClass: loxilb.io/loxilb + selector: + what: sctp-fullnat-test + ports: + - port: 56004 + protocol: SCTP + targetPort: 9999 + type: LoadBalancer +--- +apiVersion: v1 +kind: Pod +metadata: + name: sctp-fullnat-test + labels: + what: sctp-fullnat-test +spec: + containers: + - name: sctp-fullnat-test + image: loxilbio/sctp-darn:latest + imagePullPolicy: Always + #command: ["/bin/sh", "-ec", "while :; do echo '.'; sleep 6 ; done"] + command: ["sctp_darn","-H", "0.0.0.0","-P", "9999", "-l"] + #command: ["sctp_test","-H", "0.0.0.0","-P", "9999", "-l"] + ports: + - containerPort: 9999 diff --git a/cicd/k8s-calico-ipvs2-ha-ka-sync/yaml/settings.yaml b/cicd/k8s-calico-ipvs2-ha-ka-sync/yaml/settings.yaml new file mode 100644 index 00000000..11a3ba42 --- /dev/null +++ b/cicd/k8s-calico-ipvs2-ha-ka-sync/yaml/settings.yaml @@ -0,0 +1,42 @@ +--- +# cluster_name is used to group the nodes in a folder within VirtualBox: +cluster_name: Kubernetes Cluster +# Uncomment to set environment variables for services such as crio and kubelet. +# For example, configure the cluster to pull images via a proxy. +# environment: | +# HTTP_PROXY=http://my-proxy:8000 +# HTTPS_PROXY=http://my-proxy:8000 +# NO_PROXY=127.0.0.1,localhost,master-node,node01,node02,node03 +# All IPs/CIDRs should be private and allowed in /etc/vbox/networks.conf. +network: + # Worker IPs are simply incremented from the control IP. + control_ip: 192.168.80.250 + dns_servers: + - 8.8.8.8 + - 1.1.1.1 + pod_cidr: 172.16.1.0/16 + service_cidr: 172.17.1.0/18 +nodes: + control: + cpu: 2 + memory: 4096 + workers: + count: 2 + cpu: 1 + memory: 2048 +# Mount additional shared folders from the host into each virtual machine. +# Note that the project directory is automatically mounted at /vagrant. +# shared_folders: +# - host_path: ../images +# vm_path: /vagrant/images +software: + loxilb: + box: + name: sysnet4admin/Ubuntu-k8s + version: 0.7.1 + cluster: + box: bento/ubuntu-22.04 + calico: 3.26.0 + # To skip the dashboard installation, set its version to an empty value or comment it out: + kubernetes: 1.27.1-00 + os: xUbuntu_22.04 diff --git a/cicd/k8s-calico-ipvs2-ha-ka-sync/yaml/tcp_fullnat.yml b/cicd/k8s-calico-ipvs2-ha-ka-sync/yaml/tcp_fullnat.yml new file mode 100644 index 00000000..0125b69b --- /dev/null +++ b/cicd/k8s-calico-ipvs2-ha-ka-sync/yaml/tcp_fullnat.yml @@ -0,0 +1,33 @@ +apiVersion: v1 +kind: Service +metadata: + name: tcp-lb-fullnat + annotations: + loxilb.io/liveness: "yes" + loxilb.io/lbmode: "fullnat" + loxilb.io/probetype: "ping" +spec: + externalTrafficPolicy: Local + loadBalancerClass: loxilb.io/loxilb + selector: + what: tcp-fullnat-test + ports: + - port: 56002 + targetPort: 5001 + type: LoadBalancer +--- +apiVersion: v1 +kind: Pod +metadata: + name: tcp-fullnat-test + labels: + what: tcp-fullnat-test +spec: + containers: + - name: tcp-fullnat-test + image: eyes852/ubuntu-iperf-test:0.5 + command: + - iperf + - "-s" + ports: + - containerPort: 5001 diff --git a/cicd/k8s-calico-ipvs2-ha-ka-sync/yaml/udp_fullnat.yml b/cicd/k8s-calico-ipvs2-ha-ka-sync/yaml/udp_fullnat.yml new file mode 100644 index 00000000..67b72901 --- /dev/null +++ b/cicd/k8s-calico-ipvs2-ha-ka-sync/yaml/udp_fullnat.yml @@ -0,0 +1,30 @@ +apiVersion: v1 +kind: Service +metadata: + name: udp-lb-fullnat + annotations: + loxilb.io/liveness: "yes" + loxilb.io/lbmode: "fullnat" +spec: + loadBalancerClass: loxilb.io/loxilb + externalTrafficPolicy: Local + selector: + what: udp-fullnat-test + ports: + - port: 57003 + protocol: UDP + targetPort: 33333 + type: LoadBalancer +--- +apiVersion: v1 +kind: Pod +metadata: + name: udp-fullnat-test + labels: + what: udp-fullnat-test +spec: + containers: + - name: udp-fullnat-test + image: ghcr.io/loxilb-io/udp-echo:latest + ports: + - containerPort: 33333 diff --git a/cicd/k8s-calico-ipvs3-ha/validation.sh b/cicd/k8s-calico-ipvs3-ha/validation.sh index ee971639..5a1838f7 100755 --- a/cicd/k8s-calico-ipvs3-ha/validation.sh +++ b/cicd/k8s-calico-ipvs3-ha/validation.sh @@ -1,5 +1,4 @@ #!/bin/bash -set -eo pipefail source ../common.sh echo k8s-calico-ipvs3-ha diff --git a/cicd/k8s-calico-ipvs3-ha/validation_with_sctp.sh b/cicd/k8s-calico-ipvs3-ha/validation_with_sctp.sh index 393eaa39..fd3754af 100755 --- a/cicd/k8s-calico-ipvs3-ha/validation_with_sctp.sh +++ b/cicd/k8s-calico-ipvs3-ha/validation_with_sctp.sh @@ -1,5 +1,4 @@ #!/bin/bash -set -eo pipefail source ../common.sh echo k8s-calico-ipvs3-ha