kubernetes-nmstate

[keɪ ɛn ɛm steɪt] Declarative node network configuration driven through Kubernetes API.

How it works

We use nmstate to perform state driven network configuration on cluster nodes and to report back their current state. Both the configuration and reporting is controlled via Kubernetes objects.

apiVersion: nmstate.io/v1
kind: NodeNetworkConfigurationPolicy
metadata:
  name: br1-eth0
spec:
  desiredState:
    interfaces:
    - name: br1
      type: linux-bridge
      state: up
      ipv4:
        dhcp: true
        enabled: true
      bridge:
        port:
        - name: eth0

The only external dependency is NetworkManager running on nodes. See more details in Compatibility documentation.

Deployment and Usage

You can choose to deploy this operator on a local virtualized cluster or on your arbitrary cluster.

Following comprehensive 101 series is the best place to start learning about all the features:

Reporting - observe the current state of network on cluster nodes.
Configuring - configure networks and observe the progress.
Troubleshooting - see what's wrong if a configuration fails.

These example manifests should serve as reference on how to configure various configuration options:

The "Why"

With hybrid clouds, node-networking setup is becoming even more challenging. Different payloads have different networking requirements, and not everything can be satisfied as overlays on top of the main interface of the node (e.g. SR-IOV, L2, other L2). The Container Network Interface (CNI) standard enables different solutions for connecting networks on the node with pods. Some of them are part of the standard, and there are others that extend support for Open vSwitch bridges, SR-IOV, and more...

However, in all of these cases, the node must have the networks setup before the pod is scheduled. Setting up the networks in a dynamic and heterogenous cluster, with dynamic networking requirements, is a challenge by itself - and this is what this project is addressing.

Development and Contributing

Contributions are welcome! Find details about the project's design and development workflow in the developer guide.

Name	Name	Last commit message	Last commit date
Latest commit openshift-merge-bot[bot] Merge pull request #580 from openshift-networking/rebase-bot-master Mar 25, 2025 bbcdc7c · Mar 25, 2025 History 3,684 Commits
.github	.github	actions: Remove lint (nmstate#1040 )	Apr 7, 2022
api	api	build(deps): bump golang.org/x/net from 0.33.0 to 0.36.0 in /api (nms…	Mar 18, 2025
automation	automation	OPNET-648: Add readiness and healthiness probes (nmstate#1315 )	Mar 21, 2025
build	build	UPSTREAM: <carry>: Updating openshift-kubernetes-nmstate-handler-rhel…	Feb 19, 2025
bundle	bundle	UPSTREAM: <carry> Update manifests and images	Mar 25, 2025
cluster	cluster	UPSTREAM: <carry> Update manifests and images	Mar 25, 2025
cmd	cmd	OPNET-648: Add readiness and healthiness probes (nmstate#1315 )	Mar 21, 2025
controllers	controllers	UPSTREAM: <carry> Update manifests and images	Mar 11, 2025
deploy	deploy	UPSTREAM: <carry> Update manifests and images	Mar 25, 2025
design-proposals	design-proposals	format: Fix enhancement whitespace (nmstate#1301 )	Feb 26, 2025
docs	docs	build(deps): bump nokogiri from 1.18.3 to 1.18.4 in /docs (nmstate#1317 )	Mar 24, 2025
hack	hack	OPNET-627: Additional labels for the operator bundle	Mar 21, 2025
logo	logo	Resurrect the logos (nmstate#632 )	Nov 12, 2020
manifests	manifests	UPSTREAM: <carry>: rebasebot: update OCP manifests	Mar 25, 2025
metadata	metadata	[CARRY] Make operator bundle for OLM	Nov 25, 2020
pkg	pkg	OPNET-614: Configurable DNS probe (nmstate#1297 )	Mar 7, 2025
test	test	e2e, handler: Distill initial suite state	Mar 14, 2025
vendor	vendor	build(deps): bump golang.org/x/net from 0.33.0 to 0.36.0 (nmstate#1307 )	Mar 17, 2025
.ci-operator.yaml	.ci-operator.yaml	UPSTREAM: <carry>: Updating ose-kubernetes-nmstate-operator-container…	Dec 3, 2024
.dockerignore	.dockerignore	Remove code directories from .dockerignore (nmstate#633 )	Nov 12, 2020
.gitignore	.gitignore	use cluster scripts (#442 )	Mar 5, 2020
.golangci.yml	.golangci.yml	Modernize golang dependencies like controller-runtime and k8s (nmstat…	Feb 20, 2025
.snyk	.snyk	hack: don't verify SSL for devel RH	May 9, 2024
CONTRIBUTING.md	CONTRIBUTING.md	fix(CONTRIBUTING): link to local virtualized cluster guide (nmstate#1287	Jan 23, 2025
LICENSE	LICENSE	Initial commit	Oct 31, 2018
Makefile	Makefile	UPSTREAM: <carry>: test: Azure CI lane	Mar 21, 2025
OWNERS	OWNERS	Remove Doug from OWNERS	Jan 10, 2024
PROJECT	PROJECT	api: remove v1alpha1 (nmstate#1304 )	Mar 13, 2025
README.md	README.md	Move NMState and NodeNetworkConfigurationPolicy APIs to v1 (nmstate#857 )	Oct 25, 2021
bundle.Dockerfile	bundle.Dockerfile	add ipv4 example to the interfaces in the alm-examples	Jan 4, 2023
developing-on-ocp.md	developing-on-ocp.md	developing-on-ocp: update README	Jun 26, 2023
go.mod	go.mod	build(deps): bump golang.org/x/net from 0.33.0 to 0.36.0 (nmstate#1307 )	Mar 17, 2025
go.sum	go.sum	build(deps): bump golang.org/x/net from 0.33.0 to 0.36.0 (nmstate#1307 )	Mar 17, 2025

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

kubernetes-nmstate

How it works

Deployment and Usage

The "Why"

Development and Contributing

About

Releases

Packages

Languages

License

openshift/kubernetes-nmstate

Folders and files

Latest commit

History

Repository files navigation

kubernetes-nmstate

How it works

Deployment and Usage

The "Why"

Development and Contributing

About

Resources

License

Security policy

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages