cSRX Deployment in Kubernetes

cSRX Installation on Kubernetes Linux Server

Prerequisites

Following are the prerequisites required for installing cSRX on one primary node and ’n’ number of worker nodes. Before you begin the installation:

Install kubeadm tool on both primary and worker nodes to create a cluster. See Install Kubeadm
Install and configure Docker on Linux host platform to implement the Linux container environment, see Install Docker for installation instructions on the supported Linux host operating systems.
Verify the system requirement specifications for the Linux server to deploy the cSRX, see Requirements for Deploying cSRX on Kubernetes.
Download cSRX software, see Downloading cSRX Software.

Deploying cSRX Pod

You can create cSRX as a Pod in routing mode and secure-wire mode to send traffic from one virtual machine to another virtual machine. You can define multiple virtual networks and connect cSRX interfaces to those virtual networks.

The network attachment definition is created with plugin ipam type as host-local which allocates IPv4 and IPv6 addresses out of a specified address range to ensure the uniqueness of IP addresses on a single host. The ipam type as static assigns IPv4 and IPv6 addresses statically to container.

To deploy cSRX with Kubernetes:

Figure 1: Deploying cSRX

Create network attachment definition for cSRX-eth1, cSRX-eth2 with type: bridge . For details on type: bridge and type: macvlan networks, see cSRX Pod With External Network.

To create network interfaces with type: macvlan.

Create the csrx-deployment.yaml file on Kubernetes-master using kind: Deployment. cSRX as kind: Deployment is used to create ReplicaSet, Scaling, Rollout, Rollback in Kubernetes in this topic.

View the cSRX deployment:

root@kubernetes-master:~#kubectl get deployment csrx-deployment

cSRX Image Upgrade Using Deployment Rollout

You can upgrade the cSRX software image using Kubernetes Deployment rollout.

Run the following command to upgrade cSRX image using Kubernetes Deployment name in the cSRX Pod:
root@kubernetes-master:~#kubectl set image deployment csrx-deployment csrx=<new-csrx-image>
Run the following command to monitor rollout status:
root@kubernetes-master:~#kubectl rollout history deployment csrx-deployment

root@kubernetes-master:~#kubectl rollout status -w deployment csrx-deployment
You can verify the upgraded image version by logging into the newly created cSRX Pods.

cSRX Image Rollback

The cSRX image can be rolled back to previous version using Kubernetes Deployment rollout components.

Rollack cSRX image using Kubernetes Deployment rollout undo:
root@kubernetes-master:~#kubectl rollout history deployment csrx-deploy
Rollback to previous Deployment.
root@kubernetes-master:~#kubectl rollout undo deployment csrx-deploy
Rollback to a specified version.
root@kubernetes-master:~#kubectl rollout undo deployment csrx-deploy --to-version=2
Monitor the old cSRX Pods are terminated and new cSRX Pods are created.
root@kubernetes-master:~#kubectl rollout history deployment csrx-deploy

root@kubernetes-master:~#kubectl rollout status -w deployment csrx-deploy

You can verify the image version that has been rolled back by logging into the newly created cSRX Pod.

Scaling cSRX Deployment

To scale the cSRX deployment:

Ensure to have cSRX Pods created in kind: deployment running in Kubernetes cluster.
root@kubernetes-master:~#kubectl describe deployment csrx-deployment
Scale up or down by changing the replicas number:
root@kubernetes-master:~#kubectl scale deployment csrx-deployment --replicas=2

View the pods:

root@kubernetes-master:~#kubectl get pod