You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/aks/azure-cni-overlay.md
+1-25Lines changed: 1 addition & 25 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -6,7 +6,7 @@ ms.author: allensu
6
6
ms.subservice: aks-networking
7
7
ms.topic: how-to
8
8
ms.custom: references_regions
9
-
ms.date: 04/17/2023
9
+
ms.date: 04/21/2023
10
10
---
11
11
12
12
# Configure Azure CNI Overlay networking in Azure Kubernetes Service (AKS)
@@ -153,30 +153,6 @@ When the status reflects *Registered*, refresh the registration of the *Microsof
153
153
az provider register --namespace Microsoft.ContainerService
154
154
```
155
155
156
-
## Upgrade an existing cluster to CNI Overlay - Preview
157
-
158
-
> [!NOTE]
159
-
> The upgrade capability is still in preview and requires the preview AKS Azure CLI extension.
160
-
161
-
You can update an existing Azure CNI cluster to Overlay if the cluster meets certain criteria. A cluster must:
162
-
163
-
- be on Kubernetes version 1.22+
164
-
-**not** be using the dynamic pod IP allocation feature
165
-
-**not** have network policies enabled
166
-
-**not** be using any Windows node pools with docker as the container runtime
167
-
168
-
The upgrade process will trigger each node pool to be re-imaged simultaneously (i.e. upgrading each node pool separately to Overlay is not supported). Any disruptions to cluster networking will be similar to a node image upgrade or Kubernetes version upgrade where each node in a node pool is re-imaged.
169
-
170
-
> [!WARNING]
171
-
> Due to the limitation around Windows Overlay pods incorrectly SNATing packets from host network pods, this has a more detrimental effect for clusters upgrading to Overlay.
172
-
173
-
While nodes are being upgraded to use the CNI Overlay feature, pods that are on nodes which haven't been upgraded yet will not be able to communicate with pods on Windows nodes that have been upgraded to Overlay. In other words, Overlay Windows pods will not be able to reply to any traffic from pods still running with an IP from the node subnet.
174
-
175
-
This network disruption will only occur during the upgrade. Once the migration to Overlay has completed for all node pools, all Overlay pods will be able to communicate successfully with the Windows pods.
176
-
177
-
> [!NOTE]
178
-
> The upgrade completion doesn't change the existing limitation that host network pods **cannot** communicate with Windows Overlay pods.
179
-
180
156
## Next steps
181
157
182
158
To learn how to utilize AKS with your own Container Network Interface (CNI) plugin, see [Bring your own Container Network Interface (CNI) plugin](use-byo-cni.md).
![prmerger-automator[bot]](https://avatars.githubusercontent.com/u/22479449?v=4&size=40){kind=avatar}
0 commit comments