►
From YouTube: Antrea Community Meeting 09/11/2023
Description
Antrea Community Meeting, September 11th 2023
A
All
right,
good
morning,
good
afternoon
good
evening,
thanks
for
joining
the
systems
of
gentria
community
meeting
today
is
Tuesday
September
12th
and
we
have
quite
a
few
topics
on
the
agenda.
For
today
we
will
start
with
a
new
crd
design
for
live
tracing,
and
this
will
be
presented
by
Hank
and
then
we'll
have
a
discussion
regarding
and
and
CTL
support
for,
VM
agency
mode
by
Mandy.
Okay.
So
since
we
have
aquately
quite
a
few
things
to
discuss,
maybe
it's
better
if
we
start
immediately
and
let's
start
with
the
live
tracing,
please
do
your
presentation.
A
B
Okay,
so
can
you
guys
see
my
screen?
Yes,
okay,
thank
you.
So
today,
I
would
like
to
present
the
new
CID
design
for
live
tracing.
So
during
the
past
year
we
have
been.
We
have
proposed
a
few
design
for
for
this
feature,
including
the
EB
version
and
the
using
the
trace
flow
crd
version.
So
after
a
few
run,
our
discussion
today
I
would
like
to
introduce
a
new
CRT,
which
is
a
specifically
for
the
laboratorian
feature.
B
So
a
few
first
I
would
like
to
spend
some
time
to
introduce
the
the
background
for
this
feature.
We
we
have
a
existing
crd
for
the
choice
flow
and
it
is
supported
to
you
to
capture
the
first
packet
of
another
flow,
and
but
we
want
to
exist
in
exchange
this
feature
by
capture
more
packets,
because
you
in
in
most
of
the
cases
such
as
gcp,
we
would
like
to.
B
Maybe
the
users
want
to
capture
more
packs,
like
a
full
session
for
a
TCP
run
CCP
session,
so
I
I
think
this
would
be
a
useful
feature
for,
for
some
of
the
trash
cases
for
Network
like
bugs
or
videos.
So,
in
a
new
study
has
the
following
benefits:
compared
to
exchange
the
existing
Chris
flow
crd,
the
first
one
is
we
we
can
keep
the
all
the
trace
flow
crd,
it's
a
voice
like
a
constraint
preference
and
it's
more.
B
We
we
wouldn't
like
bring
like
unrelated
features
to
the
previous
flow
CRT,
and
we
can
a
new
crd.
We
can
also
have
better
support
for
additional
sample
method,
because
we
we
we
can
we
we
have
a
few
choices
for
the
for
the
capture
method
and
we
would
like
to
support
this
this
this
method
in
the
future,
and
the
final
benefits
is
that
we
can.
We
have
more
choices
for
the
story,
because
after
we
capture
the
package,
we
need
a
storage
location
storage.
B
We
need
a
storage
space
to
store
the
package
and
because
we
we,
the
user,
we
we
would
give
users
the
like
the
time
window
to
fetch
the
package
as
as
their
wishes.
So
I
have
a
sampling
crd
example.
B
For
for
the
package
sampling
feature,
the
basic
idea
is
through
reuse,
the
package
lecture
from
the
trace
flow,
CRT
and
reuse.
The
storage
storage
choices
from
the
support
bundle
CRT.
B
So,
first
of
the
spec
is
we
we
added
our
package
sampling
parameters
for,
for
example,
we
have
a
hardware
which
is
which
will
be
set
which
can
be
set
to
let
the
user
decide
if
whether
the
sampling
is
succeeded
or
not,
it
will
definitely
stop
at
this
hard
time
limit
and
after
the
an
extra
field
is
the
the
type
of
the
sampling.
B
So
in
the
First
Development
phase,
we
would
like
to
support
the
most
simple
one,
which
is
called
the
first
unsampling
means
we
we
want
to
capture
like
the
first
like
13,
2
or
46
like
this
number
of
packets,
and
you
can
search
the
number
limit
in
the
pyramid.
Spec
parameter
structure.
So
after
so
after
this
sampling
related
Trails,
we
have
the
similar
structure
field,
fails
as
Tris
flow
crd,
because
the
bear
behind
the
API.
B
We
we
have
a
similar
logical
to
choose
the
network
flow,
so
I
think
we
can
reuse
the
whole
structure
for
flow,
select
and
I.
Think
it's
maybe
more
familiar
for
the
users
as
you
can.
They
wouldn't
have
much
learning
curve
to
adapt
to
the
new
crd
and
after
we
down
the
couch
and
get
the
actual
package,
so
we
can
like
transfer
the
package
data
to
an
external
field
server.
This
this
part
was
borrowed
from
the.
B
Collection,
crd,
which
supports
users
to
download
the
the
support
bundle
date
from
this
external
server.
I
think
this.
This
has
the
similar
effect
as
the
selector,
because
we
we
already
have
this
design
and
I
I
want
to
reuse
the
existing
crd
design
to
to
mix
the
users
like
feel.
This
is
a
more
familiar
and
it's
a
simple
crd,
so
they
can
quickly
like
learning
the
and
use
and
learn
this
a
new
feature
so
yeah.
This
is
the
basic
idea
of
the
crd
structure
design.
B
So
the
other
topic
I
want
to
share
is
that
we
we
already
done
some
tests
on
the
interval
sampling
method,
which
means
we
can
pick
one
package
out
of
unsampling.
This
was
natively
supported
by
the
apifix
product,
which
is
also
supported.
Beauty
buzzer
OS,
it's
a
built-in
feature,
so
it
has
better
like
performance
against
the
first
line,
sampling
and
I.
Think
if
the
cre
design
was
was
finished,
we
can
quickly
exchange
the
current
feature
and
the
support
of
this
sampling
method.
B
So,
during
the
last
session,
we
we
have
a
question
about.
If
we
want
to
support
start,
the
packet
and
metadata
into
the
raw
package
fail,
because
in
the
last
meeting
we
we
we
use
the
existing
Trace
flow.
B
Crd
under
some
people
may
wonder
if
we
can
combine
the
the
the
the
the
the
trace
flow
information
with
the
pack
raw
package
metadata
and
because
we
we
use
the
pcap
and
G4
image
to
store
the
package
data
and
it
has
a
like
a
comment
section.
So
we
can't
like
store
attribute.
B
We
can
start
start
various
metadata
information
into
this
section,
so
we
we
may
not
like
support
this
in
the
early
stage,
but
I
think
this
possibility.
We
can't
add
this
feature.
Add
this
feature
in
the
future.
So
maybe
we
can
add
more
Flags
or
failed
to
the
crd
to
let
users
decide
if
we
want
to
add
this
information
in
their
like
final
package
data
yeah
I.
Think
that
will
be
because
I
is
the
crd
is,
is
not
that
complex
and
I
reused.
B
The
many
existing
structure
from
the
existing
crd
I'm,
not
sure
if
this
is
the
a
good
design
and
I,
would
like
you
guys
to
share
your
feedback
to
to
the
current
design
and
yeah
I.
Think
that
would
be
all
for
my
presentation.
B
C
Criteria,
it
is
for
package
or
for
flow,
because,
if
I
want
to
capture
package
of
a
session,
I
could
specify
the
source,
port
and
destination
Port,
but
I
would
expect
that
both
traffic
of
on
both
directions
could
be
captured.
So
I
can
see
the
request
and
reply
and
check
the
delay
and
check
which
package
is,
is
missing
or
really
wrist
wrist
chain
meeting
really
transmitted.
C
So
my
question
is
this
package
criteria
IP
header
and
the
transport
header
only
means
One
Direction
right,
but
would
the
other
direction
be
included
by
default?
Oh,
we
need
another
way
to
satisfy
it.
B
For
now,
I
only
considered
the
the
single
way,
direct
single
with
network
flow
for
the
trees
for
the
capture,
I
I
I'm,
not
sure
if
we
need
to
like,
including
the
both
way,
not
flowing
in
the
card
design
I.
If
if
this
was
a
like
a
mandatory
or
bad
to
have
feature
in
in
for
now,
I
would
like
to
applications
are
the
character
design
to
reflect
the
changes
to
support
both
way.
B
I
I
think
the
current
spec
can
can
support
the
replay,
Trace
flow,
replace
net
flow,
not
sure
which
field
like
is,
is
inconsistent
with
the
for
which
will
break
as
a
both
the
the
situation
you
you
mentioned,
you
mean
the
the
protocol
failed
right
or.
C
No
I
mean
if
I
want
to
capture
traffic
drawing
a
session
in
the
correct
trial.
We
are
only
match
One
Direction,
because
if
you
match
only
sport
to
be
one
10,
000
and.
D
C
It's,
but
that
may
be
not
aware,
have
before
to
debug
a
whole
session,
because.
B
B
C
E
B
If
we
can't
we,
we
should
make
the
both
three
traffic
capture,
be
the
default
choice
for
users
and
if
we
need
more,
like
failed
or
Flags
to
to
support
this
feature,
I
think
we
we
we
can't
like
do
this,
but
by
default,
but
on
The
best
scenario
is
that
we
we
we
can't
and
I
think
we
in
that
case,
we
need
to
be
clearly
documented
this
this
feature
for
the
users
that
only
support
One,
Direction
but
I,
think
I.
B
Think
I
would
like
to
spend
about
some
time
to
doing
some
POC
test
for
the
both
way
traffic
first
to
and
if,
if
we
need
some
failure,
changes,
I
would
like
to
update
the
CR
this
design
to
reflect
the
the
the
underlying
changes.
B
Yeah
I
think
we
we
better
support
this
case
and
which
is
a
best
Ambassador
for
the
choice,
and
if
we
can't
we
we
need
to
clearly
let
the
users
know
yeah.
E
C
Thank
you,
I
have
another
question
regarding
the
data
structure
of
the
API.
F
C
Time
Field
and
parameters
field
under
the
the
type
of
specific
parameter
is
in
parameters
fields
and
when
we
have
another
type,
I
see
you
put
another
type
specific
parameter
in
parameters
field
as
well,
so
I
I
feel
this
is
not
very
cumulative
style
because
you
usually,
we
need
to
figure
out
what
parameters
should
be
used
for
what
type
and
normally
in
a
community
Style
API
the
type
and
the
types
specific
parameters,
Association
Associated
and
in
a
way
of
key
and
value
so
that
perhaps
it's
like
you
have
first
and
sampling
as
the
key
and
it's
a
specific
parameters,
as
the
value
in
the
user
will
know
that
if
I
want
to
use
first
and
sampling,
I
could
only
specify
number.
C
B
B
What's
the
best
choices
for
for
this
kind
of
spec
to
to
be
present
so
I
I
guess
I
I
feel
like
a
maybe
this
is
the
most
simple
one
and
it
is
a
bit
of
overhead
to
create
a
like
a
full
type
specific
structure
for
the
sampling
related
part,
but
I
think
yeah,
your
you.
B
We
it's
better
to
follow
the
best
practice
from
the
kubernetes
community.
So
I
really
appreciate
you
like
share
the
the
some
good
examples
for
for
this
practice
design.
Yeah.
Thank
you.
E
D
C
B
I
I
think
so:
I
I
didn't
test
it
yet,
but
I
see
I
have
some
like
documents
related
to
the
similar
design,
so
I
I'm
pretty
sure
it
will.
But
I
I
need
a
fan
of
like
confirmation
for
confirm
for
this
yeah.
C
Okay,
thank
you,
I
think
it's
good
to
TCB
down
to
be
able
to
pass
it
because
normally
we
we
want
to
leverage
that
tour
to
or
what
shark
to
do
some
searching
on
the
filtering
to
analyze
the
traffic.
If
it's
not
compatible,
I
think
it
would
be
a
little
hard
to
troubleshoot
with
this
low
data.
B
D
Yeah,
hello
I
have
a
question
about
the
five
server
parts
so
that
to
design
a
few
fields
for
where
to
store
the
package
capture
packages,
I'm
wondering
if
there
is
a
way
I
mean
you
know
there
are
lots
of
fears,
rights,
I,
feel
it
might
be
better.
We
can
provide
a
song
different
way.
Maybe
for
a
cluster
there
is
a
default
setting
which
the
package
sampling
CR
can
refer
to
them.
User
may
not
have
to
set
this
field.
A
A
D
User
need
to
have
this
package
samplings
there
they
have
to
imposes
all
this
information
repeatedly.
I
mean
that
maybe
we
can
save
the
effort
if
we
can
I
mean
use
a
default
one
and
maybe
refer
to
I'm,
not
sure
it's.
If
there
is
in
any
way,
maybe
trian
household
in
the
kubernetes
way
how
the
difference
they
are
the
handle
these
parts,
but
I
feel
it
might
be
useful
to
setting
a
default.
Allow
user
to
set
a
default
storage.
B
Yeah
I
have
this.
This
question
has
occurred
to
me
in
the
design
before
the
you
have
during
I'm.
Designing
this
crd.
So
I
also
wonder
if
there
are
existing
ways
to
to
support
like
a
share
share.
The
crd
structure
between
different
crds
I
I
didn't
find
a
like
a
character
way
to
doing
so
so
I
think
the
the
current
part
A
we
we
can
only
can
do
like
share,
also
security.
B
Maybe
this
is
the
as
the
most
of
we,
and
this
is
the
what
we
can
do
for
now.
I'm,
not
sure
if
you
do,
you
know
any
like
better
solution
for
for
this
case.
If
we
can
share
the
the
same
same
information
between
differences,
crds.
C
Another
object
will
be
created
and
then
you
can
reference
refer
to
that
object
in
this
one,
and
it
could
be
multiple
one
into
one
so,
but
it
would
mean
the
the
design
would
require
at
least
two
objects
and
more
complexities.
So
we
need
to
assess
whether
it's
was,
for
example,
low
and
low
binding.
There
are
two
objects
and
one
refer
to
another
one:
to
represent
that
a
user
has
some
laws
and
also
the
processing
the
volume
and
the
position
value
claim.
C
Perhaps
we
could
consider
a
in
the
future
if
this
feature
is
widely
used
and
the
people
it
complains
about
the
redundancy
we
could
consider
create.
Another
object,
reused
by
support
bundle,
crashing
and
package
sampling
to
refer
to
that
object
to
reduce
the
redundancy.
But
a
FL
is
not
very
important
and
the
first
stage.
D
A
A
Okay,
it
seems
that
it
might
be
all
for
this
thanks
a
lotion
for
this
presentation
and
thanks
a
lot
for
everyone
who
providing
their
feedback.
So
next
topic
is
about
ant
cattle
support
for
VM
agency
mode
and
mainly
is
going
to
present
it.
Please
go
ahead.
A
F
F
F
Also,
we,
the
current
and
cattle
agent
mode,
have
some
outputs
that
are
designed
for
pause.
For
example,
I
have
pasted
the
output
here
we
can
see
that
get
an
agent
info.
We
will
have
field
like
Port,
note,
subnet,
local
pause
or
the
get
applied
group.
We
can
see
the
field
ports
here.
They
are
designed
for
the
ordinary
kubernetes
node
and
for
part,
but
not
designed
for
VM
agent.
F
So
as
a
result,
I
awake
come
to
this
proposal
and
my
proposal
here
is
to
introduce
a
new
Global
flag
called
mode
for
encato,
and
the
value
here
can
be
controller
agent
flow,
aggregator
and
VM
and
controller
agent
and
flow
aggregator.
Other
current
mode,
which
we
have
already
supported
and
the
VM
mode
is
the
newly
added
one
and
when
the
flag
is
not
set,
we
will
keep
identifying
mode
by
using
the
environment
variables
or
the
pole
names
like
what
we
have
done
before.
F
But
if
the
global
flag
mode
is
set,
it
will
have
a
higher
priority
and
for
VM
agent
case
the
flag
must
be
set
as
VM
on
which
this
mode
flag.
We
can
also
customize
the
output
according
to
mode,
and
here
is
my
proposal
and
I
have
finished
the
POC
according
to
the
proposal.
So
if
people
don't
have
any
question
of
according.
F
F
F
F
F
So
for
version
we
can
get
the
agent
version,
the
Untitled
version,
just
like
the
you
are
running
and
cattle
via
the
agent
port.
We
can
see
the
current
command
that
I
have
supported
in
this
demo.
F
F
F
F
F
Yeah,
yes,
that's
true,
so
the
I
I
think
there
is
a
issue
for
the
current
uncut
or
Imports
as
well,
because
this
field
are
not
shown.
E
F
These
are
the
an
entry
agent
info
and
the
NP
related
field
commands,
and
this
one
is
the
newly
added
one
you
can
you.
You
must
remember
that
we
have
uncut
to
get
poly
interface
for
the
for
node
age.
For
the
agent
case,
and
here
we
can.
E
Here
are
a
quick
one
here,
if
you
want
to
call
this
model,
where
maybe
you
should
just
say,
VM
interface,.
E
And
even
for
the
calling
police
you
think
about
what
sound
should
we
use
when,
instead
of
externality
or
not.
F
E
I
didn't
think
soon,
the
just
a
general
comment
fully.
You
should
think
about
each
column.
D
You
like
this
idea,
I
had
a
question
about
the
mode
of
permitted
to
be
support.
Reading
the
environment,
yes,.
F
D
But
I
mean
I
mean
it's
better
to
support,
allow
user
to
set
an
environment
variable.
Then
they
don't
have
to
input
these
parameter
in
the
command
line.
I
mean
yeah.
F
I
I
discussed
the
this
solution
with
saying
that,
generally,
we
don't
want
the
answer
to
to
write
the
environment
variable
for
uncato
to
read
yeah,
because
if
I
I
mean
my
first
version,
I
have
think
about
this.
One
I
write
I
write
them
like
the
as
a
type,
the
mode,
the
environment
variable
via
the
entire
agent
that,
after
discussed
with
weighing,
we
don't
think
it's
a
good
way
for
for
enter
agent
to
to
write
any
environment
variable,
but
but
I'd.
D
G
Yeah,
sorry,
sorry
for
interrupt
actually
learn.
We
have
some
offline
discussions
to
to
choose
whether
we
should
introduce
a
environment.
Variable
I'll
use
a
parameter
in
antarctal
command
lines
to
specify
the
the
mode
we
firstly
choose
the
parameter,
because
that's
for
for
them
case.
G
The
difference
is
the
agent
is
running
around
the
VMS
and
we
do
not
have
something
like
the
Pod
or
containers
which
can
inject
some
environment
variables
automatically
by
the
other
modules
like
Cube
cards,
cubecutes
or
something
like
lights,
so
for
for
them
case.
If
we
want
to
introduce
the
environmental
variables,
it
means
that
we
may
require
an
additional
user
steps
to
set
the
the
the
the
verbals
and
women
require
the
user
to
initialize
the
environmental
variables
inside
in
the
in
the
Machine
level.
G
Not
only
the
shell
level,
so
I
don't
think
it
is
a
simple
step
for
the
user.
D
C
When
setting
up
the
environment,
we
could
use
unsaterial
set
mode
with
M
and
just
is
killed
it
once.
Then,
we
write
this
mode
into
the
configure
file
and
then
use
it
on
how
to
specify
the
mode
for
the
following
commands
and
if
they
want
to
switch
to
connect
to
a
kubernetes
cluster,
they
could
change
the
mode
like
a
set
mode
remote
or
something
like
that.
C
D
F
A
And
it
appears
that
it
might
be
all
for
many
details
thanks
a
lot
for
for
this
presentation
and
we
added
to
very
good
presentations
today,
which
was
a
very
great,
a
very
good
meeting,
and
since
we
have
still
some
time,
if
there
is
any
other
topic
that
you
would
like
to
bring
up,
please
go
ahead.
A
Waiting
a
few
more
seconds,
unfortunately,
I,
don't
have
anything
to
bring
up
for
myself
and
well.
It
looks
like
that
it
may
be
all
for
today,
so
I
would
like
to
thank
everyone
for
attending
and,
most
importantly,
thanks
for
hang
and
Mindy
for
the
presentations
and
see
you
in
two
weeks
time
for
the
next
instance
of
the
community
meeting
thanks
again
and
I
wish
everyone
a
good
afternoon
or
a
good
night
thanks.