Lab 3.2 v09.05 switch to Cilium from Calico - no tun interfaces

scott.sorell · September 2023

Hi! Couple questions...

Did the labs moved from Calico to Cilium in this most recent v09.05? There still seem to be many references to Calico in the labs.

On Lab 3.4 part 19 should I be doing the following since tun10 might be Calico?

sudo tcpdump -i cilium_host

Thanks!

fazlur.khan · September 2023

Hello @scott.sorell

Yes, the labs are now using cilium as CNI.

Calico uses tunl0 is an IPIP tunnel for encapsulating pod traffic. We will update the labs to remove the Calico and tunl0 reference from the lab section.

You can use sudo tcpdump -i cilium_host or sudo tcpdump -i cilium_vxlan as well.

thank you

scott.sorell · September 2023

OR, it seems I get http responses on cilium_vxlan network

student@worker:~$ sudo tcpdump -i cilium_vxlan
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on cilium_vxlan, link-type EN10MB (Ethernet), capture size 262144 bytes
05:08:59.948364 IP 192.168.0.52 > 192.168.1.57: ICMP echo request, id 22362, seq 34913, length 24
05:08:59.948510 IP 192.168.1.57 > 192.168.0.52: ICMP echo reply, id 22362, seq 34913, length 24
05:08:59.948794 IP 192.168.0.52.45858 > 192.168.1.57.4240: Flags [P.], seq 3291467514:3291467617, ack 3970427139, win 504, options [nop,nop,TS val 3065724954 ecr 2644733861], length 103
05:08:59.949269 IP 192.168.1.57.4240 > 192.168.0.52.45858: Flags [P.], seq 1:76, ack 103, win 509, options [nop,nop,TS val 2644763045 ecr 3065724954], length 75
05:08:59.949423 IP 192.168.0.52.45858 > 192.168.1.57.4240: Flags [.], ack 76, win 504, options [nop,nop,TS val 3065724954 ecr 2644763045], length 0
05:09:04.461549 IP 192.168.0.52.36554 > 192.168.1.71.http: Flags [S], seq 2978627765, win 65320, options [mss 1420,sackOK,TS val 3203960533 ecr 0,nop,wscale 7], length 0
05:09:04.461967 IP 192.168.1.71.http > 192.168.0.52.36554: Flags [S.], seq 3788362589, ack 2978627766, win 65184, options [mss 1370,sackOK,TS val 324544386 ecr 3203960533,nop,wscale 7], length 0
05:09:04.462212 IP 192.168.0.52.36554 > 192.168.1.71.http: Flags [.], ack 1, win 511, options [nop,nop,TS val 3203960534 ecr 324544386], length 0
05:09:04.462288 IP 192.168.0.52.36554 > 192.168.1.71.http: Flags [P.], seq 1:78, ack 1, win 511, options [nop,nop,TS val 3203960534 ecr 324544386], length 77: HTTP: GET / HTTP/1.1
05:09:04.462319 IP 192.168.1.71.http > 192.168.0.52.36554: Flags [.], ack 78, win 509, options [nop,nop,TS val 324544386 ecr 3203960534], length 0
05:09:04.462504 IP 192.168.1.71.http > 192.168.0.52.36554: Flags [P.], seq 1:239, ack 78, win 509, options [nop,nop,TS val 324544387 ecr 3203960534], length 238: HTTP: HTTP/1.1 200 OK
05:09:04.462662 IP 192.168.0.52.36554 > 192.168.1.71.http: Flags [.], ack 239, win 510, options [nop,nop,TS val 3203960535 ecr 324544387], length 0

scott.sorell · September 2023

Thanks! Good to know. Just a suggestion... it might be good to include a short changelog of what switched between old and new labs in the announcement for v09.05.

Lab 3.2 v09.05 switch to Cilium from Calico - no tun interfaces

Best Answer

Answers

Categories

Upcoming Training

Kubernetes Administration (LFS458)

Linux System Administration (LFS301)

Open Source Virtualization (LFS462)

Linux Kernel Debugging and Security (LFD440)