| title | expires_at | tags | |
|---|---|---|---|
Sub Projects |
never |
|
cni-teardown: Standalone binary used within silk-cnicni-wrapper-plugin: Provision the network namespace and configure the network interface and routing rules for a container.iptables-logger: Enables iptables kernel logs and emits logs augmented with additonal metadata.netmon: Emits metrics every 30 seconds about network interface count, overlay RX/TX bytes sent and dropped, and iptables rules count. This component Uses iptables mutex lock.silk-daemon-bootstrapandsilk-daemon-shutdown: Daemon that polls the silk-controller API to acquire and renew the overlay subnet lease for the Diego cell. Polling frequency can be configured and is 5s by default. It also serves an API that the silk-cni calls to retrieve information about the overlay subnet lease.silk-datastore-syncer: Sync silk datastore for running containers from Gardensilk: Silk is an open-source, CNI-compatible container networking fabric. It was inspired by the flannel VXLAN backend and designed to meet the strict operational requirements of Cloud Foundry.vxlan-policy-agent: Polls the the Policy Server Internal API for desired network policies (container networking and dynamic application security groups) and writes IPTables rules on the Diego cell to enforce those policies for network traffic between applications. For container networking policies, the IPtables rules tag traffic from applications with network policies on egress, and separate rules at the destination allow traffic with tags whitelisted by policies to applications on ingress. This component Uses iptables mutex lock.