# Kube-OVN

**Repository Path**: mirrors/Kube-OVN

## Basic Information

- **Project Name**: Kube-OVN
- **Description**: Kube-OVN 将基于 OVN/OVS 的网络虚拟化方案带入 Kubernetes，提供了针对企业应用场景的高级容器网络编排功能
- **Primary Language**: Unknown
- **License**: Apache-2.0
- **Default Branch**: master
- **Homepage**: https://www.oschina.net/p/kube-ovn
- **GVP Project**: No

## Statistics

- **Stars**: 18
- **Forks**: 9
- **Created**: 2019-05-16
- **Last Updated**: 2026-02-14

## Categories & Tags

**Categories**: Uncategorized

**Tags**: None

## README

<img src="https://raw.githubusercontent.com/cncf/artwork/main/projects/kube-ovn/horizontal/color/kube-ovn-horizontal-color.svg" alt="kube_ovn_logo" width="500"/>

[![Our](https://img.shields.io/static/v1?label=Our&message=Website&color=blue)](https://kube-ovn.io/)
[![License](https://img.shields.io/badge/License-Apache%202.0-blue.svg)](https://github.com/kubeovn/kube-ovn/blob/master/LICENSE)
[![latest-release](https://img.shields.io/github/release/kubeovn/kube-ovn.svg)](https://github.com/kubeovn/kube-ovn/releases)
[![Docker Tag](https://img.shields.io/docker/pulls/kubeovn/kube-ovn)](https://img.shields.io/docker/pulls/kubeovn/kube-ovn)
![Docker Image Size (latest by date)](https://img.shields.io/docker/image-size/kubeovn/kube-ovn?sort=date)
[![Go Report Card](https://goreportcard.com/badge/github.com/kubeovn/kube-ovn)](https://goreportcard.com/report/github.com/kubeovn/kube-ovn)

Kube-OVN, a [CNCF Sandbox Project](https://www.cncf.io/sandbox-projects/), integrates OVN-based Network Virtualization with Kubernetes. It provides enhanced support for KubeVirt and unique Multi-Tenancy capabilities.

## Network Topology

![topology](docs/ovn-network-topology.png "kube-ovn network topology")

## Features

- **VPC Support**: Multi-tenant network with independent address spaces, where each tenant has its own network infrastructure such as eips, nat gateways, security groups and loadbalancers.
- **Namespaced Subnets**: Each Namespace can have a unique Subnet (backed by a Logical Switch). Pods within the Namespace will have IP addresses allocated from the Subnet. It's also possible for multiple Namespaces to share a Subnet.
- **Vlan/Underlay Support**: In addition to overlay network, Kube-OVN also supports underlay and vlan mode network for better performance and direct connectivity with physical network.
- **Static IP Addresses for Workloads**: Allocate random or static IP addresses to workloads.
- **Seamless VM LiveMigration**: Live migrate KubeVirt vm without network interruption.
- **Non-Primary CNI Mode**: Kube-OVN can work as a secondary CNI alongside other primary CNIs (Cilium, Calico, etc.), providing additional network interfaces and advanced networking features via Network Attachment Definitions (NADs).
- **Multi-Cluster Network**: Connect different Kubernetes/Openstack clusters into one L3 network.
- **TroubleShooting Tools**: Handy tools to diagnose, trace, monitor and dump container network traffic to help troubleshoot complicate network issues.
- **Prometheus & Grafana Integration**: Exposing network quality metrics like pod/node/service/dns connectivity/latency in Prometheus format.
- **ARM Support**: Kube-OVN can run on x86_64 and arm64 platforms.
- **Subnet Isolation**: Can configure a Subnet to deny any traffic from source IP addresses not within the same Subnet. Can whitelist specific IP addresses and IP ranges.
- **Network Policy**: Implementing networking.k8s.io/NetworkPolicy API by high performance ovn ACL.
- **DualStack IP Support**: Pod can run in IPv4-Only/IPv6-Only/DualStack mode.
- **Pod NAT and EIP**: Manage the pod external traffic and external ip like tradition VM.
- **IPAM for Multi NIC**: A cluster-wide IPAM for CNI plugins other than Kube-OVN, such as macvlan/vlan/host-device to take advantage of subnet and static ip allocation functions in Kube-OVN.
- **Dynamic QoS**: Configure Pod/Gateway Ingress/Egress traffic rate/priority/loss/latency on the fly.
- **Embedded Load Balancers**: Replace kube-proxy with the OVN embedded high performance distributed L2 Load Balancer.
- **Distributed Gateways**: Every Node can act as a Gateway to provide external network connectivity.
- **Namespaced Gateways**: Every Namespace can have a dedicated Gateway for Egress traffic.
- **Direct External Connectivity**: Pod IP can be exposed to external network directly.
- **BGP Support**: Pod/Subnet IP can be exposed to external by BGP router protocol.
- **Traffic Mirror**: Duplicated container network traffic for monitoring, diagnosing and replay.
- **Hardware Offload**: Boost network performance and save CPU resource by offloading OVS flow table to hardware.

## Quick Start

Kube-OVN is easy to install, please refer to the [Installation Guide](https://kubeovn.github.io/docs/stable/en/start/one-step-install/).

## Documents

- [CNI Selection Recommendations](https://kubeovn.github.io/docs/stable/en/#cni-selection-recommendations)
- [Getting Start](https://kubeovn.github.io/docs/stable/en/start/prepare/)
- [KubeVirt Usage](https://kubeovn.github.io/docs/stable/en/kubevirt/static-ip/)
- [VPC Network](https://kubeovn.github.io/docs/stable/en/vpc/vpc/)
- [User Guide](https://kubeovn.github.io/docs/stable/en/guide/setup-options/)
- [Operations](https://kubeovn.github.io/docs/stable/en/ops/kubectl-ko/)
- [Advanced Usage](https://kubeovn.github.io/docs/stable/en/advance/multi-nic/)
- [Reference](https://kubeovn.github.io/docs/stable/en/reference/architecture/)

## Contribution

We are looking forward to your PR!

- [Development Guide](https://kubeovn.github.io/docs/en/reference/dev-env/)
- [Architecture Guide](https://kubeovn.github.io/docs/en/reference/architecture/)

## Community

The Kube-OVN community is waiting for your participation!

- 🔗 Follow us on [Linkedin](https://www.linkedin.com/company/kube-ovn/)
- 💬 Chat with us on [Slack](https://communityinviter.com/apps/kube-ovn/kube-ovn)

## Adopters

A list of adopters and use cases can be found in [USERS.md](USERS.md)