Skip to content

Commit

Permalink
Topology-aware routing docs (#1920)
Browse files Browse the repository at this point in the history 
* Adding feature documentation and task instructions for topology aware hints

Signed-off-by: Alen Haric <[email protected]>

* cleaned up previously committed errors and modified phrasing as recommended by Flynn.

Signed-off-by: Alen Haric <[email protected]>

* fixed minor typo

Signed-off-by: Alen Haric <[email protected]>

* fixed missing code block notation on Hints.ForZones

Signed-off-by: Alen Haric <[email protected]>

* Tweaks plus callouts for stable features in 2.16+

Signed-off-by: Flynn <[email protected]>

* Lint fixes

Signed-off-by: Flynn <[email protected]>

* Fix front matter

Signed-off-by: Flynn <[email protected]>

* Fix "stable distribution" link

Signed-off-by: Flynn <[email protected]>

* Hints -> Routing, vet for correctness, and note that we don't do the new trafficDistribution feature

Signed-off-by: Flynn <[email protected]>

* Address review feedback.

Signed-off-by: Flynn <[email protected]>

* Add 2-edge versions

Signed-off-by: Flynn <[email protected]>

---------

Signed-off-by: Alen Haric <[email protected]>
Signed-off-by: Flynn <[email protected]>
Co-authored-by: deusxanima <[email protected]>
Co-authored-by: Alen Haric <[email protected]>
  • Loading branch information
@kflynn @deusxanima
3 people authored Feb 26, 2025
1 parent a8e3bf0 commit cba6df5
Show file tree
Hide file tree
Showing 14 changed files with 918 additions and 0 deletions.
46 changes: 46 additions & 0 deletions linkerd.io/content/2-edge/features/topology-aware-routing.md
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,46 @@
---
title: Topology Aware Routing
description: |-
Linkerd's implementation of Kubernetes topology aware routing enables endpoint consumption based on a node's zone label.
---

Kubernetes clusters are increasingly deployed in multi-zone environments with
network traffic often relying on obscure endpoint matching and routing for a
given service. Linkerd's implementation of Kubernetes ([Topology Aware
Routing][topology aware routing]) provides users with a mechanism for
asserting more control over endpoint selection and routing within a cluster
that spans multiple zones. Users can now implement routing constraints and
prefer endpoints in a specific zone in order to limit cross-zone networking
costs or improve performance through lowered cross-zone latency and bandwidth
constraints.

The goal of topology aware routing is to to provide a simpler way for users to
prefer endpoints by basing decisions solely off the node's
`topology.kubernetes.io/zone` label. If a client is in `zone-a`, then it
should prefer endpoints marked for use by clients in `zone-a`. When the
feature is enabled and the label set, Linkerd's destination controller will
attempt to find endpoints whose `routing.ForZones` field matches the client's
zone.

(Topology aware routing is distinct from the `trafficDistribution` feature
that appears in Kubernetes 1.31. `trafficDistribution` is not yet supported by
Linkerd.)

{{< note >}}

If you're using a stable distribution of Linkerd, it may have additional
features related to topology-aware routing (for example, <a
href="https://buoyant.io/linkerd-enterprise/">Buoyant Enterprise for
Linkerd</a> and its <a
href="https://docs.buoyant.io/buoyant-enterprise-linkerd/latest/features/hazl/">HAZL</a>
feature). You can find more information about the different kinds of Linkerd
releases on the [Releases and Versions](/releases/) page.

{{< /note >}}

To get started with topology aware routing take a look at the [enabling
topology aware routing](../../tasks/enabling-topology-aware-routing/) task
documentation.

[topology aware routing]:
https://kubernetes.io/docs/concepts/services-networking/topology-aware-routing/
92 changes: 92 additions & 0 deletions linkerd.io/content/2-edge/tasks/enabling-topology-aware-routing.md
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,92 @@
---
title: "Enabling Topology Aware Routing"
description: |-
Enable topology aware routing to allow Linkerd to intelligently choose same-zone endpoints
---

[Topology aware routing](../../features/topology-aware-routing/) allows
Linkerd users to specify endpoint selection boundaries when a request is made
against a service, making it possible to limit cross-zone endpoint selection
and lower the associated costs and latency.

{{< note >}}

If you're using a stable distribution of Linkerd, it may have additional
features related to topology-aware routing (for example, <a
href="https://buoyant.io/linkerd-enterprise/">Buoyant Enterprise for
Linkerd</a> and its <a
href="https://docs.buoyant.io/buoyant-enterprise-linkerd/latest/features/hazl/">HAZL</a>
feature). You can find more information about the different kinds of Linkerd
releases on the [Releases and Versions](/releases/) page.

{{< /note >}}

There are four requirements to successfully enabling topology aware routing
with Linkerd:

1. The `TopologyAwareHints` feature gate MUST be enabled on the Kubernetes
cluster. (This feature gate is enabled by default in Kubernetes 1.24 and
later.)

2. Linkerd's `endpointSlice` feature MUST be turned on. (This is the default
starting with Linkerd stable-2.12).

3. Each Kubernetes node needs to be assigned to a zone, using
`"topology.kubernetes.io/zone` label.

4. Relevant Kubernetes services will need to be modified with the
`service.kubernetes.io/topology-aware-hints=auto` annotation.

When Linkerd receives a set of endpoint slices and translates them to an
address set, a copy of the `Hints.forZones` field is made from each endpoint
slice if one is present. This field is only present if it's set by the
endpoint slice controller, and there are several
[safeguards][topology-aware-routing-safeguards] that Kubernetes checks before
setting it. To have the endpoint slice controller set the `forZones` field
users will have to add the `service.kubernetes.io/topology-aware-hints=auto`
annotation to the service.

After the endpoints have been translated into an address set and the endpoint
translator's available endpoints have been updated, filtering is applied to
ensure only the relevant sets of addresses are returned when a request is
made.

For each potential address in the available endpoint set Linkerd returns a set
of addresses whose consumption zone (zones in `forZones` field) matches that
of the node's zone. By doing so Linkerd ensures communication is limited to
endpoints that have been labeled by the endpoint slice controller for the same
node the client is on and limits cross-node and cross-zone communication.

## Constraints

Kubernetes places some [constraints][topology-aware-routing-constraints] on
topology aware routing that you should review before trying to enable topology
aware routing on Linkerd.

The main things to be aware of are:

- Topology aware routing assumes that traffic to a given zone will be roughly
proportional to the capacity of the nodes in the zone. This can be a concern
when using horizontal pod autoscaling, as HPA may start nodes in the "wrong"
zone.

- Services with `internalTrafficPolicy` set to `Local` ignore topology aware
routing, by design.

- If you have workloads running on Nodes labeled with `control-plane` or
`master` role, topology aware routing will not route to endpoints on these
Nodes.

## Configuring Topology Aware Routing

Successful topology aware routing can be confirmed by looking at the Linkerd
proxy logs for the relevant service. The logs should show a stream of messages
similar to the ones below:

```text {class=disable-copy}
time="2021-08-27T14:04:35Z" level=info msg="Establishing watch on endpoint [default/nginx-deploy-svc:80]" addr=":8086" component=endpoints-watcher
time="2021-08-27T14:04:35Z" level=debug msg="Filtering through addresses that should be consumed by zone zone-b" addr=":8086" component=endpoint-translator remote="127.0.0.1:49846" service="nginx-deploy-svc.default.svc.cluster.local:80"
```

[topology-aware-routing-safeguards]: https://kubernetes.io/docs/concepts/services-networking/topology-aware-hints/#safeguards
[topology-aware-routing-constraints]: https://kubernetes.io/docs/concepts/services-networking/topology-aware-hints/#constraints
34 changes: 34 additions & 0 deletions linkerd.io/content/2.12/features/topology-aware-routing.md
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,34 @@
---
title: Topology Aware Routing
description: |-
Linkerd's implementation of Kubernetes topology aware routing enables endpoint consumption based on a node's zone label.
---

Kubernetes clusters are increasingly deployed in multi-zone environments with
network traffic often relying on obscure endpoint matching and routing for a
given service. Linkerd's implementation of Kubernetes ([Topology Aware
Routing][topology aware routing]) provides users with a mechanism for
asserting more control over endpoint selection and routing within a cluster
that spans multiple zones. Users can now implement routing constraints and
prefer endpoints in a specific zone in order to limit cross-zone networking
costs or improve performance through lowered cross-zone latency and bandwidth
constraints.

The goal of topology aware routing is to to provide a simpler way for users to
prefer endpoints by basing decisions solely off the node's
`topology.kubernetes.io/zone` label. If a client is in `zone-a`, then it
should prefer endpoints marked for use by clients in `zone-a`. When the
feature is enabled and the label set, Linkerd's destination controller will
attempt to find endpoints whose `routing.ForZones` field matches the client's
zone.

(Topology aware routing is distinct from the `trafficDistribution` feature
that appears in Kubernetes 1.31. `trafficDistribution` is not yet supported by
Linkerd.)

To get started with topology aware routing take a look at the [enabling
topology aware routing](../../tasks/enabling-topology-aware-routing/) task
documentation.

[topology aware routing]:
https://kubernetes.io/docs/concepts/services-networking/topology-aware-routing/
80 changes: 80 additions & 0 deletions linkerd.io/content/2.12/tasks/enabling-topology-aware-routing.md
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,80 @@
---
title: "Enabling Topology Aware Routing"
description: |-
Enable topology aware routing to allow Linkerd to intelligently choose same-zone endpoints
---

[Topology aware routing](../../features/topology-aware-routing/) allows
Linkerd users to specify endpoint selection boundaries when a request is made
against a service, making it possible to limit cross-zone endpoint selection
and lower the associated costs and latency.

There are four requirements to successfully enabling topology aware routing
with Linkerd:

1. The `TopologyAwareHints` feature gate MUST be enabled on the Kubernetes
cluster. (This feature gate is enabled by default in Kubernetes 1.24 and
later.)

2. Linkerd's `endpointSlice` feature MUST be turned on. (This is the default
starting with Linkerd stable-2.12).

3. Each Kubernetes node needs to be assigned to a zone, using
`"topology.kubernetes.io/zone` label.

4. Relevant Kubernetes services will need to be modified with the
`service.kubernetes.io/topology-aware-hints=auto` annotation.

When Linkerd receives a set of endpoint slices and translates them to an
address set, a copy of the `Hints.forZones` field is made from each endpoint
slice if one is present. This field is only present if it's set by the
endpoint slice controller, and there are several
[safeguards][topology-aware-routing-safeguards] that Kubernetes checks before
setting it. To have the endpoint slice controller set the `forZones` field
users will have to add the `service.kubernetes.io/topology-aware-hints=auto`
annotation to the service.

After the endpoints have been translated into an address set and the endpoint
translator's available endpoints have been updated, filtering is applied to
ensure only the relevant sets of addresses are returned when a request is
made.

For each potential address in the available endpoint set Linkerd returns a set
of addresses whose consumption zone (zones in `forZones` field) matches that
of the node's zone. By doing so Linkerd ensures communication is limited to
endpoints that have been labeled by the endpoint slice controller for the same
node the client is on and limits cross-node and cross-zone communication.

## Constraints

Kubernetes places some [constraints][topology-aware-routing-constraints] on
topology aware routing that you should review before trying to enable topology
aware routing on Linkerd.

The main things to be aware of are:

- Topology aware routing assumes that traffic to a given zone will be roughly
proportional to the capacity of the nodes in the zone. This can be a concern
when using horizontal pod autoscaling, as HPA may start nodes in the "wrong"
zone.

- Services with `internalTrafficPolicy` set to `Local` ignore topology aware
routing, by design.

- If you have workloads running on Nodes labeled with `control-plane` or
`master` role, topology aware routing will not route to endpoints on these
Nodes.

## Configuring Topology Aware Routing

Successful topology aware routing can be confirmed by looking at the Linkerd
proxy logs for the relevant service. The logs should show a stream of messages
similar to the ones below:

```text {class=disable-copy}
time="2021-08-27T14:04:35Z" level=info msg="Establishing watch on endpoint [default/nginx-deploy-svc:80]" addr=":8086" component=endpoints-watcher
time="2021-08-27T14:04:35Z" level=debug msg="Filtering through addresses that should be consumed by zone zone-b" addr=":8086" component=endpoint-translator remote="127.0.0.1:49846" service="nginx-deploy-svc.default.svc.cluster.local:80"
```

[topology-aware-routing-safeguards]: https://kubernetes.io/docs/concepts/services-networking/topology-aware-hints/#safeguards
[topology-aware-routing-constraints]: https://kubernetes.io/docs/concepts/services-networking/topology-aware-hints/#constraints
34 changes: 34 additions & 0 deletions linkerd.io/content/2.13/features/topology-aware-routing.md
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,34 @@
---
title: Topology Aware Routing
description: |-
Linkerd's implementation of Kubernetes topology aware routing enables endpoint consumption based on a node's zone label.
---

Kubernetes clusters are increasingly deployed in multi-zone environments with
network traffic often relying on obscure endpoint matching and routing for a
given service. Linkerd's implementation of Kubernetes ([Topology Aware
Routing][topology aware routing]) provides users with a mechanism for
asserting more control over endpoint selection and routing within a cluster
that spans multiple zones. Users can now implement routing constraints and
prefer endpoints in a specific zone in order to limit cross-zone networking
costs or improve performance through lowered cross-zone latency and bandwidth
constraints.

The goal of topology aware routing is to to provide a simpler way for users to
prefer endpoints by basing decisions solely off the node's
`topology.kubernetes.io/zone` label. If a client is in `zone-a`, then it
should prefer endpoints marked for use by clients in `zone-a`. When the
feature is enabled and the label set, Linkerd's destination controller will
attempt to find endpoints whose `routing.ForZones` field matches the client's
zone.

(Topology aware routing is distinct from the `trafficDistribution` feature
that appears in Kubernetes 1.31. `trafficDistribution` is not yet supported by
Linkerd.)

To get started with topology aware routing take a look at the [enabling
topology aware routing](../../tasks/enabling-topology-aware-routing/) task
documentation.

[topology aware routing]:
https://kubernetes.io/docs/concepts/services-networking/topology-aware-routing/
80 changes: 80 additions & 0 deletions linkerd.io/content/2.13/tasks/enabling-topology-aware-routing.md
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,80 @@
---
title: "Enabling Topology Aware Routing"
description: |-
Enable topology aware routing to allow Linkerd to intelligently choose same-zone endpoints
---

[Topology aware routing](../../features/topology-aware-routing/) allows
Linkerd users to specify endpoint selection boundaries when a request is made
against a service, making it possible to limit cross-zone endpoint selection
and lower the associated costs and latency.

There are four requirements to successfully enabling topology aware routing
with Linkerd:

1. The `TopologyAwareHints` feature gate MUST be enabled on the Kubernetes
cluster. (This feature gate is enabled by default in Kubernetes 1.24 and
later.)

2. Linkerd's `endpointSlice` feature MUST be turned on. (This is the default
starting with Linkerd stable-2.12).

3. Each Kubernetes node needs to be assigned to a zone, using
`"topology.kubernetes.io/zone` label.

4. Relevant Kubernetes services will need to be modified with the
`service.kubernetes.io/topology-aware-hints=auto` annotation.

When Linkerd receives a set of endpoint slices and translates them to an
address set, a copy of the `Hints.forZones` field is made from each endpoint
slice if one is present. This field is only present if it's set by the
endpoint slice controller, and there are several
[safeguards][topology-aware-routing-safeguards] that Kubernetes checks before
setting it. To have the endpoint slice controller set the `forZones` field
users will have to add the `service.kubernetes.io/topology-aware-hints=auto`
annotation to the service.

After the endpoints have been translated into an address set and the endpoint
translator's available endpoints have been updated, filtering is applied to
ensure only the relevant sets of addresses are returned when a request is
made.

For each potential address in the available endpoint set Linkerd returns a set
of addresses whose consumption zone (zones in `forZones` field) matches that
of the node's zone. By doing so Linkerd ensures communication is limited to
endpoints that have been labeled by the endpoint slice controller for the same
node the client is on and limits cross-node and cross-zone communication.

## Constraints

Kubernetes places some [constraints][topology-aware-routing-constraints] on
topology aware routing that you should review before trying to enable topology
aware routing on Linkerd.

The main things to be aware of are:

- Topology aware routing assumes that traffic to a given zone will be roughly
proportional to the capacity of the nodes in the zone. This can be a concern
when using horizontal pod autoscaling, as HPA may start nodes in the "wrong"
zone.

- Services with `internalTrafficPolicy` set to `Local` ignore topology aware
routing, by design.

- If you have workloads running on Nodes labeled with `control-plane` or
`master` role, topology aware routing will not route to endpoints on these
Nodes.

## Configuring Topology Aware Routing

Successful topology aware routing can be confirmed by looking at the Linkerd
proxy logs for the relevant service. The logs should show a stream of messages
similar to the ones below:

```text {class=disable-copy}
time="2021-08-27T14:04:35Z" level=info msg="Establishing watch on endpoint [default/nginx-deploy-svc:80]" addr=":8086" component=endpoints-watcher
time="2021-08-27T14:04:35Z" level=debug msg="Filtering through addresses that should be consumed by zone zone-b" addr=":8086" component=endpoint-translator remote="127.0.0.1:49846" service="nginx-deploy-svc.default.svc.cluster.local:80"
```

[topology-aware-routing-safeguards]: https://kubernetes.io/docs/concepts/services-networking/topology-aware-hints/#safeguards
[topology-aware-routing-constraints]: https://kubernetes.io/docs/concepts/services-networking/topology-aware-hints/#constraints
Loading

0 comments on commit cba6df5

Please sign in to comment.