►
From YouTube: Kubernetes SIG Windows 20170124
Description
Kubernetes SIG Windows 20170124
A
Hi
everyone
welcome
to
another,
a
cig
windows
meeting.
You
guys
remember.
We
meet
every
two
weeks,
unfortunately
we're
at
the
same
time
as
some
of
the
signal
meetings,
so
they
have
changed
their
time
to
conflicted
hours.
I,
don't
know
if
there's
a
good
way
for
us
to
change
our
time,
I'm,
not
sure
if
any
of
us
also
want
to
attend
signode.
A
If
there
is
a
big
need
and
folks
won't
attend
both
meeting
to,
let
me
know
and
we'll
see
if
we
can
work
out
a
different
time
for
secundus
I'm,
Michael
Michael
from
a
panda
also
from
a
plan
that
will
have
a
g2
brat
and
shake
colormode
folks
here
as
mean
and
I'm
root.
Ag,
if
you
guys
want
to
quickly
introduce
yourself,
say,
quick,
hi
and
then
going
to
stablish
hi.
C
A
Excellent,
thank
you
alright.
So
let
me
give
you
a
little
of
the
status
of
what's
going
on
in
the
last
couple
of
weeks
and
what
we
are
going
for
from
here.
So
you
know
like
both
of
you
mentioned
so
far.
We
are.
We
have
perish
from
our
team
who
I
think
couldn't
join
us
today.
We
just
finished
a
bunch
of
meetings
at
aprenda,
so
I
think
he's
tied
up
with
some
of
that,
but
we
were
working
on
essentially
a
couple
of
different
areas:
a
chemical
burn,
Eddie's
and
producing
good
documentation
on
how
to
run
Cuban.
A
Ladies,
including
the
window
support
on
gcp.
In
addition
to
ensuring
that
you
can
get
networking
inside
the
container
to
work
on
PCP
all
platforms
that
includes
on-premise
gcp
is
your
AWS
and
so
on
and
so
forth
with
our
primary
goal,
getting
it
enabled
on
gcp
first.
So
so
pretty
she
is
working
with
you
guys.
It
looks
like
the
only
way
you
can
get
that
to
work
is
by
providing
multiple
and
virtual
network
adapters
in
the
containers
where
one
of
them
is
a
transparent
network
adapter,
and
that's
where
we
do
the
connectivity
and
arousing
in
secular.
A
B
B
A
Other
company
has
arisen
commercial
support,
but
the
OVA
no
vs
is
an
open
source
solution.
So
the
goal
is
obvious:
2.7
release
to
be
come
out
within
the
next
12
months,
and
that
was
early
January
right.
So
we're
talking
about
late,
februari,
March
timeframe
and
cloud
base
is
talking
to
Microsoft
about
some
of
these
networking
capabilities.
Okay,
so
that's
number
one.
The
second
thing
we
are
working
with
Microsoft
as
well
to
make
sure
that
we
get
some
of
these
container
mode.
Networking
available
for
Cuban,
a
DS,
sorry
for
dr.
A
on
Windows
Microsoft
has
not
given
us
an
ETA
yet,
and
some
of
our
discussions
fall
under
NDA,
but
rest
assured
the
role
working
on
them
and
we're
trying
to
push
for
for
having
a
solution
natively
from
Microsoft
for
container
mode
networking,
so
so,
basically,
two
distinct
routes.
There's
the
cmi
plugin
for
all.
A
You
know
vs,
including
nuts,
that
precious
working
on
and
also
the
continuum
only
working
from
Microsoft
that
what
trying
to
do
either
of
those
two
approaches
as
you
as
you
get
more
clarity
and
you
can
near
then
game-
would
allow
us
to
react
to
that.
One
networking
would
look
like
for
windows
and
cooper,
Navy's
and
check
it
out.
You
know:
do
you
replace
your
proxy,
or
do
we
enhance
it?
You
know
right
now
we
don't
know
until
you
get
closer,
but
we
are
working
on
both
of
those
solutions
at
some.
A
The
item
number
one
item
number
two
on
the
on
the
docket
is
God
blocked
by
some
some
Microsoft
container,
bugs
to
enable
concave
box
and
secrets
John
Howard,
which
is
the
Microsoft
working
with
the
doctor
and
Windows
Server
containers
on
his
part
of
the
thing.
That's
maintaining
that
that
that
the
repo
has
acknowledged
ticket
I
do
have
not
gotten
an
ETA
yet
so
G
to
maybe
this
is
a
good
time
to
to
go
back
to
John
Howard
and
if,
if
there's
an
update
on
that
yea.
A
How
that
interface
is
going
to
be
exposed
kind
of
coverage
capabilities
are
going
to
happen,
but
also
to
make
sure
that
whatever
gets
implemented
would
need
either
would
need
for
windows
or
can
be
easily
extended
or
or
plugged
in
for
the
window
support.
So
I
said,
g2
is
probably
going
to
have
a
much
bigger
update
on
that
within
the
next
week's
going
to
make
a
little
bit
progress
there.
I
know
you
wanted
to
add
something
on
the
audience.
Ovm
obvious,
sighs
go
ahead,
yeah.
D
First
of
all,
I
think
nimbooda
welcome
yeah,
so
today,
I
have
another
meeting
with
a
call
based
guy
and
we
have
been
able
to
work
or
get
getting
stuff
to
work
regarding,
like
the
container
networking
issue
but
I
by
the
way,
Michael
Michael,
I'm
I
wasn't
here
before
so
I'm,
not
sure
if
you
have
met
saying
before,
but
Fang
and
Peter
are
people
from
GCT
that
helped
me
get
a
container
networking
running
on
Windows,
obviously,
with
with
those
limitations
we
have
identified
before
and
so
far
with
ovn,
which
is
part
of
the
ovs,
we
were
able
to
change
a
little
bit
of
docker,
so
a
darker
network
plug-in
that
is
able
to
get
information
from
ovn
or
in
disguise
ovs
database.
D
So
it
finds
and
creates
like
new
virtual
nic
and
some
flows,
which
basically
is
like
iptables
rules
on
linux
so
to
proxy.
Here
with
work,
we
could
replace
it
with
OBS
flow.
We
could
replace
the
current
behavior
that
we
have
with
an
SSH
with
with
those
flows,
and
all
of
that
would
work.
The
only
thing
that
we're
still
trying
to
look
at
how
we
would
implement
is
the
the
local
owes
behavior
on
multi
container
pot.
So
after
we
have
an
idea
on
how
to
implement
is
the
mob
base?
D
Guys
and
I
are
going
to
try
and
get
it
to
work,
and
if
we
are
able
to
do
this,
then
the
question
will
be:
should
we
or
is
there
anything
against
adopting
ova
and
ova
n
as
the
networking
solution
here,
because
there
are
a
couple
questions
or
so
some
questions
in
this
bigger
question,
which
is
first
we're
talking
about
the
first
party
solution,
even
though
it's
everything
is
open
source,
even
the
windows
extension
from
the
call
based
guys
this
is
all
open
source.
So
what
exactly
is
needed
for
us
to
have
this
working?
D
Let's
say
on
we
love
machine
on
Google
cloud
platform
or
you
know,
and
people
may
look
at
it
and
get
for
you
is
that
ok
now
we
need
to
use
OBS
ovn
both
for
Windows
and
Linux
machine,
which
is
not
entirely
true,
but
people
will
look
at
this
much
first
yeah
no
pienso
en
is
basically
to
personal
in
solution.
There
are
plenty
like
protocol
Z
implement
like
geneve
and
pls
GRE,
and
those
could
be
leveraged
to
have
like
0
vs
on
Windows,
but
something
else
on
lineThe,
but
that
would
be
very
difficult
to
achieve.
D
So
that
would
be
the
first
like
think
here
and
the
second
one
would
definitely
be
what
kind
of
changes
would
be
needed
to
be
in
place
for
cuban
at
ease
to
play
along
with
so
either
she
and
I
plug
in
or
a
doctor
plugin,
but
that
would
limit
the
runtimes
that
we
would
support
very
system
linux.
You
have
dr.,
you
have
rocket
and
you
have
PMS,
you
have
a
different
point.
I
cannot
recommend
ocid
and
a
few
other
ones
in
the
future.
So.
A
D
Not
that's
not
entirely
correct
I
mean
we
would
still
need
to
so.
If
we
do
this
on
Windows,
then
definitely
there
needs
to
be
for
influence
that
you're
using
weave
or
flannel
on
the
linux
side.
Obviously
you
need
something
that
is
compatible
with
that
on
the
windows
side
and
vice
versa.
So
if
you're
using
OBS
ovn
to
instrument
the
network
on
the
window,
five,
then
something
else
needs
to
understand
exactly
what's
going
on
on
the
Linux
eyes,
and
this
may
be
simply
just
about
the
same
tunneling.
D
So
tunneling
implementation
so
use
GRE
or
geneve,
for
instance,
that
best
that
is
completely
possible,
but
TNI
plugins
are
very
stateless
in
the
sense
of
the
only
reacts
to
when
a
coolant
in
a
certain
note
advocate
as
the
pod
or
remove
the
pot.
That's
basically
it
while
the
full
solution
like
flannel
or
calico
or
we've
met,
they
have
a
few
other
components
that
are
outside
of
the
TNI
plugging
the
channel.
Plugin
is
just
the
thing
that
connects
or
integrate
the
their
solution
with
the
Cuban
at
ease
networking.
D
But
in
the
end,
if
we
have
let's
say,
we've
met
for
windows,
we
couldn't
trivially
in
a
trivial
way,
have
we've
met
on
windows
and
flannel
or
calico
on
Lena's?
You
know,
because
there
are
two
different
things
in
the
end.
It's
just
IP
and
you
could
change
stuff
to
make
that
work,
but
it's
not
clear
exactly
at
the
end.
My
second
question:
what's
the
question,
it's
not
clear
exactly
what
we
would
need
to
do
to
make
that
work.
Yeah.
A
So
I
guess
right
now:
it's
too
early
I
know
that
there's
business
investments
with
tag
era
and
and
calico.
So
you
know
as
we
move
forward,
and
we
understand
the
landscape
or
ova
novias
and
as
the
cloud
based
team
and
everybody
else
is
getting
closer
to
obvious
2.7.
That
would
enable
the
doctor
implementations
and
not
capabilities
that
we
talked
about.
Then
we
can
see
what
architecture
would
be
and
we
definitely
to
go
back
to
seek
network
and
explain
them
that
so
they
can
understand
the
trade-offs
of
an
approach
where
there's
a
single
CNI.
A
That
would
spark
notes
and
windows
and
well
thats
eni
needs
to
be
something
like
ova,
no
vs
that,
because
the
capabilities
we
need
our
windows
or
something
else
and
it's
expedia
rises
up
from
the
responsibility
of
the
different
tunneling
solutions
to
see
the
this
way
that
they
can
work
together.
So
one
of
them
is
deployed
on
linux
and
the
other
one
is
on
windows.
I
would
understand
that
from
a
cloud-based
perspective,
they
have
the
upper
hand,
because
the
only
one
that
we
are
going
windows
at
that
point
so.
A
Yeah,
let's
just
keep
making
progress
on
that
and
now
stand
up.
Maybe
you
can
figure
out
when
the
right
time
is
to
to
bring
this
up
to
the
Signet
work
guys
when
that
is
maybe
a
way
that
you
can
also
maybe
to
them
a
small
demo
or
something
like
that
sure
I
will
I
will
for
sure.
You
want
to
say
something
yeah.
B
Maybe
maybe
not
cuttin
hear
me
really
think
up
with
a
plan,
but
the
I
would
like
to
get
understanding
and
because
I'm,
as
we
discussed
the
container
networking
issue,
the
only
thing
seems
to
be
prevented
from
working
is
like
a
windows
is
lacking
of
the
like
a
sausage
based
on
that
capability,
the
basic
equipment
iptables.
I
go
the
the
distant
you
think
that
relation
to
like
go
to
the
the
net,
but
we
don't.
B
We
don't
have
a
building
calabria
for
that,
and
then
we
end
up
like
a
crazy
separated
adapter
for
the
container
and
using
transport
combined
both
strands
island
and
the
net
to
provide
such
a
capability.
So
sounds
right
at
you
like
you
are
trying
to
using
ova,
ova
mm
and
the
introducing
who
a
lot
of
stuff.
So
my
question
is
in
addition
to
the
dragon
lab
could
operate.
Is
there
anything
else?
The
dissolution
is
a
bring
to
the
table,
so
we
can
like
this.
D
Good
very
good
question
thing,
so
here's
the
thing
so
when
I
reached
you,
the
things
we
were
aiming
at
was
just
to
fix
the
the
net
issue.
That
is
still
exists,
not
just
on
Google
obvious,
but
while
looking
at
possible
solutions,
we
run
across
the
OBS.
Oh
yeah,
oh
yeah,
port
windows
and
the
thing
here
if
it
doesn't
get
see
fix
and
that
issue,
but
it
fixes
or
provides
a
way
for
us
to
fix
the
other
limitations.
D
D
D
It's
something
that
leverages
on
the
OBS
open
this
switch
solution
is
it
will
just
open
more
opportunities
for
what
we
can
do
and
if
we're
looking
at
fixing
just
the
internet
connectivity
problem
within
the
windows
containers,
we
already
found
a
solution
right,
so
we
can
have
like
the
two
networks,
but
we
can
do
that
manually,
not
in
the
Cuban
at
ease
contact.
That's
the
hardest
thing
to
do
here
is
to
have
so
a
container
with
two
network.
How
can
we
do
that
within
Cuban
at
ease?
D
D
I've
tried
very
hard
to
achieve
this
and
it's
very
very
difficult,
particularly
the
last
step,
which
is
even
if
the
two
bananas
people
accepted
that
we
have
a
different
implementation
for
Windows,
where
we
create
the
container,
we
attach
two
networks,
and
then
we
can
run
the
container
the
step
about
adding
routes
and
all
of
that
inside
the
container.
It's
not
trivial.
D
If
we
actually
to
me,
according
to
my
experience,
it's
numba
with
OBS,
that's
pretty
much
given
to
you,
because
you're
managing
like
the
ovs
spiritual,
like
little
bridges,
it's
something
that
can
be
done
at
the
host
level.
That
will
have
an
impact
on
on
the
container.
I
am
glad
yeah
and
another
thing.
Another
big
improvement
is,
for
instance,
the
implementation
that
we
have
for
to
proxy.
So
the
way
that
we
do
a
packet
forwarding
and
blocking,
and
all
of
that
that's
possible
with
OBS.
They
have
this
notion
of
stateful
firewall
II,
which
are
like
flow.
D
There
are
standards
for
that
which
integrates
beautifully
with
networking
equipment
like
Cisco,
Networking
concern
and
all
of
that
and
and
that's
very
powerful,
put
in
right
now
we
rely
on
net
SH,
which
only
support
like
TCP,
it's
very
limited,
so
we
can.
We
can't
do
much.
We
did
quite
a
stretch
to
get
very
little.
You
know
real
world
functionality
here.
So
is
now
clear
why
we
are
getting
into
more
complex
solution.
D
A
Guys
so
so,
let's
move
on
here
thanks
reg
for
their
very
detailed
explanation,
I
couple
of
all
things
that
are
on
our
docket.
That
think
that
that
you
need
to
work
on,
and
maybe
for
some
of
them
we
don't
really
have
the
manpower.
Yet
we
do
want
to
see
some
of
the
end-to-end
tests
happening,
who
raced
this
in
the
past,
and
you
know
we'll
look
at
the
plan
that
you
see
if
you
can
provide
additional
resources
to
help
us
on
this.
A
It
looks
like
nobody
volunteered
from
the
Cooper
Native
community
to
come
and
help
us
write
some
of
this
test.
So
if
someone
does
want
to
volunteer,
please
send
me
an
email
or
a
slack
message
and
we'll
see
how
can
walk
the
work
in
milestones
and
see
what
it
can
be
giver
in
the
short
term,
right,
soso,
test
on
a
whole
of
different
topics
and
then
I
working
for
microsoft,
networking
from
Aviano
vs.
We
talked
about
CRI
and
and
the
sea
advisor
totally
about
end-to-end
tests.
A
Right
now-
and
the
last
thing
that
I
have
here
is
there
are
a
couple
of
PRS
that
we
have
are
coming
from
cigna
windows
that
were
waiting
for
folks
like
Brendan
Byrnes,
to
approve
Kingdom
a
couple
of
times
so
far
it
doesn't
seem
like
this
house
has
helped.
So
hopefully
you
know
they'll
find
the
liberal
free
time
to
get
those
PRS
approved
and
merged
from
the
aprender
perspective.
There's
another
update.
We
have
a
couple
minutes
left
if
anybody
else
wants
to
provide
an
update
or
say
something.
D
Okay,
thanks
Michael
regarding
the
test
I
just
want
to
have
that
one
of
the
things
we
were
looking
at
was
to
have
Windows
servers
where
we
could
get
test
Ephraim,
which
is
another
repository
of
secure
benetti's
organization.
That's
needed
to
automate
testing
so
right
now
and
for
the
people
that
are
not
aware
of
this
people
that
are
acting
on
Cuban
iris
code,
since
99
dot,
dot,
nein,
nein,
nein,
nein,
the
end
of
them
are
on
Linux
or
Mac
when
they
compile
the
compile
for
linux.
D
So
usually
the
compiler
will
ignore
the
specifics
of
the
windows,
implementations
and
so
very
easily.
They
can
break
our
implementation.
If
you
can
go
exactly
so,
we
need
test
infrastructure
in
place.
So
that's
the
bot,
the
cuban
a
despot
verifies
HPR
that
changes
code
related.
Let's
say
the
cruel,
a
dork
you
proxy.
We
need
to
make
sure
that
there
are
tests
for
windows
that
run
on
windows
to
you
know
to
validate
this,
and
this
is
very
hard.
I've
also
looked
into
it.
A
Sir,
so
whoever
picks
it
up
and
has
time
to
dedicate
on
that
definitely
will
have
to
go
and
sync
with
their
with
the
guys
around
automation
for
Cuban,
a
DS
which
is
all
of
them
google
employees
and
see
how
we
can
introduce
the
necessary
both
infrastructure,
as
well
as
automation,
workflows
to
make
this
happen.
Sorry
I.
Nobody
underestimate
the
amount
of
work
will
be
necessary
to
do
this.
A
lot
of
it
would
be
political.
A
B
A
They
probably
could
it
will
not
be
a
problem.
It's
a
budget
problems.
I'm
going
to
see
that
would
be
a
problem.
There
will
be
an
issue
there.
The
problem
is
that
we
need
someone
from
sick
windows
that
would
take
the
ownership
to
actually
write
the
test
and
kind
of
drive
this.
So
so
we
don't
have
that
person
yet,
okay,
cool,
alright
guys!
This
is
the
end.
Thank
you
for
attending
the
windows
meeting
will
see
you
guys
in
two
weeks.