mesos-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "James DeFelice (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (MESOS-2044) Use one IP address per container for network isolation
Date Thu, 14 May 2015 17:08:01 GMT

    [ https://issues.apache.org/jira/browse/MESOS-2044?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14544034#comment-14544034
] 

James DeFelice commented on MESOS-2044:
---------------------------------------

An executor may launch tasks into their own isolated network namespace, independent from that
of the executor. Does this JIRA accommodate that? Or is this really an IP-per-executor JIRA?

> Use one IP address per container for network isolation
> ------------------------------------------------------
>
>                 Key: MESOS-2044
>                 URL: https://issues.apache.org/jira/browse/MESOS-2044
>             Project: Mesos
>          Issue Type: Epic
>            Reporter: Cong Wang
>
> If there are enough IP addresses, either IPv4 or IPv6, we should use one IP address per
container, instead of the ugly port range based solution. One problem with this is the IP
address management, usually it is managed by a DHCP server, maybe we need to manage them in
mesos master/slave.
> Also, maybe use macvlan instead of veth for better isolation.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Mime
View raw message