Container-Native Networking - Comparison
 Share
The version of the browser you are using is no longer supported. Please upgrade to a supported browser.Dismiss

 
Comment only
 
 
ABCDEFGHIJKLMNOPQRSTUVWXYZAAABACADAEAF
1
FeatureDocker Overlay NetworkCalicoFlannelWeave NetCanal
(Calico + Flannel)
RomanaAporeto/TriremeCisco ContivCovalent CiliumKube-RouterOVS/OVNNSX-TMidokuraNuageOpen Contrail
2
Open SourceYesYesYesYesYesYesYesYesYesYesYesNoYes/NoNoYes
3
Network Model
[Data Path Technique]
VXLAN overlayL3 with BGP Peering or IPIP EncapsulationVXLAN or UDP overlayVXLAN or UDP overlay; IP routed for AWS VPCVXLAN or UDP overlayLayer 3Layer 3 with TLSLayer 2, Layer 3 (BGP) & VxLAN overlayL3 with optional encapsulationBGP BasedGENEVE
4
Network Policy API SupportNoYesUses a custom mechanism for applying policy.Yes
5
Application IsolationCIDR SchemaPolicy Schema based on labels, cidrs, ports and profilesCIDR SchemaCIDR Schema, Network Policy APIPolicy Schema based on labels, cidrs, ports and profilesCIDR SchemaTLS-basedBoth Label based as well as CIDR SchemaPolicy based on labelsCIDR
6
Isolation from Host Network NSYESYesYesYesYes
7
Ingress PolicyYesYesYesYesYes*
8
Egress policyYesNoNoYesYesYes
9
Protocol SupportALL except multicastALL ALLALLALLALLTCP onlyAllArtifically limited to IPv4/IPv6 & TCP/UDP/ICMP[v6]All IPv4 and IPv6. Multicast not supported
10
Built-in Name ServiceYESNoNoYesNoNoNoYesNoNo
11
Built-in Service Load BalancerYESNoNoNoNoNoYesYesYes
12
Cluster Store RequirementsNoneetcd/k8s APIetcd/k8s APINoneetcd/k8s API
etcd/Consul
Zookeeper
None
etcd/Consul
Yes
(consul or etcd)
Zookeeper
13
EncryptionYESNoNoNaCl LibraryNoNoTLSNoYes (IPSec)TLS
14
Separate vNIC for Container
YESYesNoYesNoNoNoYesYes (shared logical routing table)NA
15
IP Overlap SupportYESNoNoNoNoNoNoYes, multiple VRFsNoYes
16
Container Subnet RestrictionYESNoNoYes, configurable after startNoNoNoNo restrictionNo
17
Multicast supportNONoNoYesNoNoNoYesNo
18
Pods routable from outside clusterN/AYesNoYesNoYesYes
19
Container Networking InterfaceN/AYesYesYesYesYes?YesYes
20
Container Networking ModelYESYesNoYesNoNo?YesYes
21
OpenStack SupportN/AYesNoNoNoYesYesNoYesYesYesYesYes
22
Kubernetes CNIN/AYesYesYesYesYesYesYesYesYes
23
Mesos SupportN/AYesYesYesYesNoYesYes
24
Docker SupportYesYesNoYesNoYesYesYes
25
rkt SupportN/AYesYesNo
26
Cloud Foundry SupportNO?Yes??NoNoYes
27
Nomad SupportN/ANoNoNoNoNoYesNo
28
URL to Networking ArchitectureCalico Reference ArchitectureFlannelIntroducing Weavetigera/canalRomana BasicsTrireme Architecturecontiv.iohttps://github.com/cilium/cilium
29
URL to Reference ArchitectureDesigning Scalable, Portable Docker Container NetworksRomana Details
30
URL to DemoCalico DemoCilium
31
TroubleshootingCalicoWeave
32
33
Please use N/A if support isn't applicable
34
35
Kubernetes Cluster Backup - Comparison
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
Loading...
Main menu