containernetworking
diff --git a/‎config.toml‎
Lines changed: 2 additions & 2 deletions b/‎config.toml‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎content/plugins/v1.1/_index.md‎
Lines changed: 49 additions & 0 deletions b/‎content/plugins/v1.1/_index.md‎
Lines changed: 49 additions & 0 deletions
diff --git a/‎content/plugins/v1.1/ipam/_index.md‎
Lines changed: 13 additions & 0 deletions b/‎content/plugins/v1.1/ipam/_index.md‎
Lines changed: 13 additions & 0 deletions
diff --git a/‎content/plugins/v1.1/ipam/dhcp.md‎
Lines changed: 84 additions & 0 deletions b/‎content/plugins/v1.1/ipam/dhcp.md‎
Lines changed: 84 additions & 0 deletions
diff --git a/‎content/plugins/v1.1/ipam/host-local.md‎
Lines changed: 149 additions & 0 deletions b/‎content/plugins/v1.1/ipam/host-local.md‎
Lines changed: 149 additions & 0 deletions
diff --git a/‎content/plugins/v1.1/ipam/static.md‎
Lines changed: 75 additions & 0 deletions b/‎content/plugins/v1.1/ipam/static.md‎
Lines changed: 75 additions & 0 deletions
@@ -35,8 +35,8 @@ contentDir = "/content/"
 version_menu = "Versions"
 
 [params.versions]
-latest = "v1.0"
-all    = ["current", "v1.0", "v0.9", "v0.8", "v0.7", "v0.6"]
+latest = "v1.1"
+all    = ["current", "v1.1", "v1.0", "v0.9", "v0.8", "v0.7", "v0.6"]
 
 [params.logos]
 navbar = "cni-horizontal-color.png"
 
@@ -0,0 +1,49 @@
+---
+title: Plugins Overview
+date: 2020-11-02
+toc: true
+draft: false
+weight: 200
+cascade:
+  version: v1.1
+---
+
+These are general-purpose CNI network plugins maintained by the containernetworking team. For more information, see the individual plugin pages.
+
+## Reference plugins:
+
+### Main: interface-creating
+
+* [`bridge`](main/bridge): Creates a bridge, adds the host and the container to it
+* [`ipvlan`](main/ipvlan): Adds an [ipvlan](https://www.kernel.org/doc/Documentation/networking/ipvlan.txt) interface in the container
+* [`macvlan`](main/macvlan): Creates a new MAC address, forwards all traffic to that to the container
+* [`ptp`](main/ptp): Creates a veth pair
+* [`host-device`](main/host-device): Moves an already-existing device into a container
+* [`vlan`](main/vlan): Creates a vlan interface off a master
+
+#### Windows: windows specific
+
+* [`win-bridge`](main/win-bridge): Creates a bridge, adds the host and the container to it
+* [`win-overlay`](main/win-overlay): Creates an overlay interface to the container
+
+### IPAM: IP address allocation
+* [`dhcp`](ipam/dhcp): Runs a daemon on the host to make DHCP requests on behalf of a container
+* [`host-local`](ipam/host-local): Maintains a local database of allocated IPs
+* [`static`](ipam/static): Allocates static IPv4/IPv6 addresses to containers
+
+### Meta: other plugins
+
+* [`tuning`](meta/tuning): Changes sysctl parameters of an existing interface
+* [`portmap`](meta/portmap): An iptables-based portmapping plugin. Maps ports from the host's address space to the container
+* [`bandwidth`](meta/bandwidth): Allows bandwidth-limiting through use of traffic control tbf (ingress/egress)
+* [`sbr`](meta/sbr): A plugin that configures source based routing for an interface (from which it is chained)
+* [`firewall`](meta/firewall): A firewall plugin which uses iptables or firewalld to add rules to allow traffic to/from the container
+
+## Contact
+
+For any questions about CNI, please reach out via:
+- Email: [cni-dev](https://groups.google.com/forum/#!forum/cni-dev)
+- Slack: #cni on the [CNCF slack](https://slack.cncf.io/).
+
+If you have a _security_ issue to report, please do so privately to the email addresses listed in the [OWNERS](OWNERS.md) file.
+
@@ -0,0 +1,13 @@
+---
+title: "IPAM"
+date: 2020-11-11
+toc: false
+draft: false
+weight: 100
+---
+
+## IPAM: IP address allocation
+* [`dhcp`](dhcp): Runs a daemon on the host to make DHCP requests on behalf of a container
+* [`host-local`](host-local): Maintains a local database of allocated IPs
+* [`static`](static): Allocates static IPv4/IPv6 addresses to containers
+
@@ -0,0 +1,84 @@
+---
+title: dhcp plugin
+description: "plugins/ipam/dhcp/README.md"
+date: 2020-11-02
+toc: true
+draft: false
+weight: 200
+---
+
+## Overview
+
+With dhcp plugin the containers can get an IP allocated by a DHCP server already running on your network.
+This can be especially useful with plugin types such as [macvlan](/plugins/current/main/macvlan/).
+Because a DHCP lease must be periodically renewed for the duration of container lifetime, a separate daemon is required to be running.
+The same plugin binary can also be run in the daemon mode.
+
+## Operation
+To use the dhcp IPAM plugin, first launch the dhcp daemon:
+
+```
+# Make sure the unix socket has been removed
+$ rm -f /run/cni/dhcp.sock
+$ ./dhcp daemon
+```
+
+If given `-pidfile <path>` arguments after 'daemon', the dhcp plugin will write
+its PID to the given file.  
+If given `-hostprefix <prefix>` arguments after 'daemon', the dhcp plugin will
+use this prefix for DHCP socket as `<prefix>/run/cni/dhcp.sock`. You can use
+this prefix for references to the host filesystem, e.g. to access netns and the
+unix socket.  
+If given `-broadcast=true` argument after 'daemon', the dhcp plugin will
+enable the broadcast flag on DHCP packets.  
+If given `-timeout <duration>` arguments after 'daemon', the dhcp daemon will
+time out unanswered dhcp requests after this duration, defaults to `10s`.
+
+Alternatively, you can use systemd socket activation protocol.
+Be sure that the .socket file uses /run/cni/dhcp.sock as the socket path.
+
+With the daemon running, containers using the dhcp plugin can be launched.
+
+## DHCP Options
+
+Not all DHCP options are supported when requesting from server. Current supported are:
+
+* `ip-address`, `subnet-mask`
+* `static-routes`, `classless-static-routes`, `routers`
+* `dhcp-lease-time`, `dhcp-renewal-time`, `dhcp-rebinding-time`
+
+See `man:dhcp-options(5)` for description of these names. Also, you can use option ID instead of names, like `121` for `classless-static-routes`.
+## Example configuration
+
+For example, to send hostname to the DHCP server when using Podman runtime, use this config:
+```json
+{
+    "ipam": {
+        "type": "dhcp",
+        "daemonSocketPath": "/run/cni/dhcp.sock",
+        "request": [
+            {
+                "skipDefault": false
+            }
+        ],
+        "provide": [
+            {
+                "option": "host-name",
+                "fromArg": "K8S_POD_NAME"
+            }
+        ]
+    }
+}
+```
+
+## Network configuration reference
+
+* `type` (string, required): "dhcp"
+* `daemonSocketPath` (string, optional): Path to the socket of daemon. If `-hostprefix` is set for the daemon, this value should be set to `<prefix>/run/cni/dhcp.sock`.
+* `request` (dict, optional): Options requesting from DHCP server.
+    * `skipDefault` (bool, optional): If the default request list is skipped.
+    * `option` (string, optional): String or number representation of the DHCP option.
+* `provide` (dict, optional): Options providing to DHCP server when acquire leases.
+    * `option` (string, optional): String or number representation of the DHCP option.
+    * `value` (string, optional): String representation of the value. Directly sent to server.
+    * `fromArg` (string, optional): Get value from `CNI_ARGS` by given argument name.
@@ -0,0 +1,149 @@
+---
+title: host-local IP address management plugin
+description: "plugins/ipam/host-local/README.md"
+date: 2020-11-02
+toc: true
+draft: false
+weight: 200
+---
+
+host-local IPAM allocates IPv4 and IPv6 addresses out of a specified address range. Optionally,
+it can include a DNS configuration from a `resolv.conf` file on the host.
+
+## Overview
+
+host-local IPAM plugin allocates ip addresses out of a set of address ranges.
+It stores the state locally on the host filesystem, therefore ensuring uniqueness of IP addresses on a single host.
+
+The allocator can allocate multiple ranges, and supports sets of multiple (disjoint) 
+subnets. The allocation strategy is loosely round-robin within each range set.
+
+## Example configurations
+
+Note that the key `ranges` is a list of range sets. That is to say, the length 
+of the top-level array is the number of addresses returned. The second-level 
+array is a set of subnets to use as a pool of possible addresses.
+
+This example configuration returns 2 IP addresses.
+
+```json
+{
+	"ipam": {
+		"type": "host-local",
+		"ranges": [
+			[
+				{
+					"subnet": "10.10.0.0/16",
+					"rangeStart": "10.10.1.20",
+					"rangeEnd": "10.10.3.50",
+					"gateway": "10.10.0.254"
+				},
+				{
+					"subnet": "172.16.5.0/24"
+				}
+			],
+			[
+				{
+					"subnet": "3ffe:ffff:0:01ff::/64",
+					"rangeStart": "3ffe:ffff:0:01ff::0010",
+					"rangeEnd": "3ffe:ffff:0:01ff::0020"
+				}
+			]
+		],
+		"routes": [
+			{ "dst": "0.0.0.0/0" },
+			{ "dst": "192.168.0.0/16", "gw": "10.10.5.1" },
+			{ "dst": "3ffe:ffff:0:01ff::1/64" }
+		],
+		"dataDir": "/run/my-orchestrator/container-ipam-state"
+	}
+}
+```
+
+Previous versions of the `host-local` allocator did not support the `ranges`
+property, and instead expected a single range on the top level. This is
+deprecated but still supported.
+```json
+{
+  "ipam": {
+		"type": "host-local",
+		"subnet": "3ffe:ffff:0:01ff::/64",
+		"rangeStart": "3ffe:ffff:0:01ff::0010",
+		"rangeEnd": "3ffe:ffff:0:01ff::0020",
+		"routes": [
+			{ "dst": "3ffe:ffff:0:01ff::1/64" }
+		],
+		"resolvConf": "/etc/resolv.conf"
+	}
+}
+```
+
+We can test it out on the command-line:
+
+```bash
+$ echo '{ "cniVersion": "0.3.1", "name": "examplenet", "ipam": { "type": "host-local", "ranges": [ [{"subnet": "203.0.113.0/24"}], [{"subnet": "2001:db8:1::/64"}]], "dataDir": "/tmp/cni-example"  } }' | CNI_COMMAND=ADD CNI_CONTAINERID=example CNI_NETNS=/dev/null CNI_IFNAME=dummy0 CNI_PATH=. ./host-local
+
+```
+
+```json
+{
+    "ips": [
+        {
+            "version": "4",
+            "address": "203.0.113.2/24",
+            "gateway": "203.0.113.1"
+        },
+        {
+            "version": "6",
+            "address": "2001:db8:1::2/64",
+            "gateway": "2001:db8:1::1"
+        }
+    ],
+    "dns": {}
+}
+```
+
+## Network configuration reference
+
+* `type` (string, required): "host-local".
+* `routes` (string, optional): list of routes to add to the container namespace. Each route is a dictionary with "dst" and optional "gw" fields. If "gw" is omitted, value of "gateway" will be used.
+* `resolvConf` (string, optional): Path to a `resolv.conf` on the host to parse and return as the DNS configuration
+* `dataDir` (string, optional): Path to a directory to use for maintaining state, e.g. which IPs have been allocated to which containers
+* `ranges`, (array, required, nonempty) an array of arrays of range objects:
+	* `subnet` (string, required): CIDR block to allocate out of.
+	* `rangeStart` (string, optional): IP inside of "subnet" from which to start allocating addresses. Defaults to ".2" IP inside of the "subnet" block.
+	* `rangeEnd` (string, optional): IP inside of "subnet" with which to end allocating addresses. Defaults to ".254" IP inside of the "subnet" block for ipv4, ".255" for IPv6
+	* `gateway` (string, optional): IP inside of "subnet" to designate as the gateway. Defaults to ".1" IP inside of the "subnet" block.
+
+Older versions of the `host-local` plugin did not support the `ranges` array. Instead,
+all the properties in  the `range` object were top-level. This is still supported but deprecated.
+
+## Supported arguments
+The following [CNI_ARGS](https://github.com/containernetworking/cni/blob/master/SPEC.md#parameters) are supported:
+
+* `ip`: request a specific IP address from a subnet.
+
+The following [args conventions](https://github.com/containernetworking/cni/blob/master/CONVENTIONS.md) are supported:
+
+* `ips` (array of strings): A list of custom IPs to attempt to allocate
+
+The following [Capability Args](https://github.com/containernetworking/cni/blob/master/CONVENTIONS.md) are supported:
+
+* `ipRanges`: The exact same as the `ranges` array - a list of address pools
+
+### Custom IP allocation
+For every requested custom IP, the `host-local` allocator will request that IP
+if it falls within one of the `range` objects. Thus it is possible to specify
+multiple custom IPs and multiple ranges.
+
+If any requested IPs cannot be reserved, either because they are already in use
+or are not part of a specified range, the plugin will return an error.
+
+
+## Files
+
+Allocated IP addresses are stored as files in `/var/lib/cni/networks/$NETWORK_NAME`.
+The path can be customized with the `dataDir` option listed above. Environments
+where IPs are released automatically on reboot (e.g. running containers are not
+restored) may wish to specify `/var/run/cni` or another tmpfs mounted directory
+instead.
@@ -0,0 +1,75 @@
+---
+title: static IP address management plugin
+description: "plugins/ipam/static/README.md"
+date: 2020-11-02
+toc: true
+draft: false
+weight: 200
+---
+
+## Overview
+
+static IPAM is very simple IPAM plugin that assigns IPv4 and IPv6 addresses statically to container. This will be useful in debugging purpose and in case of assign same IP address in different vlan/vxlan to containers.
+
+
+## Example configuration
+
+```json
+{
+	"ipam": {
+		"type": "static",
+		"addresses": [
+			{
+				"address": "10.10.0.1/24",
+				"gateway": "10.10.0.254"
+			},
+			{
+				"address": "3ffe:ffff:0:01ff::1/64",
+				"gateway": "3ffe:ffff:0::1"
+			}
+		],
+		"routes": [
+			{ "dst": "0.0.0.0/0" },
+			{ "dst": "192.168.0.0/16", "gw": "10.10.5.1" },
+			{ "dst": "3ffe:ffff:0:01ff::1/64" }
+		],
+		"dns": {
+			"nameservers" : ["8.8.8.8"],
+			"domain": "example.com",
+			"search": [ "example.com" ]
+		}
+	}
+}
+```
+
+## Network configuration reference
+
+* `type` (string, required): "static"
+* `addresses` (array, optional): an array of ip address objects:
+	* `address` (string, required): CIDR notation IP address.
+	* `gateway` (string, optional): IP inside of "subnet" to designate as the gateway.
+* `routes` (string, optional): list of routes add to the container namespace. Each route is a dictionary with "dst" and optional "gw" fields. If "gw" is omitted, value of "gateway" will be used.
+* `dns` (string, optional): the dictionary with "nameservers", "domain" and "search".
+
+## Supported arguments
+
+The following [CNI_ARGS](https://github.com/containernetworking/cni/blob/master/SPEC.md#parameters) are supported:
+
+* `IP`: request a specific CIDR notation IP addresses, comma separated
+* `GATEWAY`: request a specific gateway address
+
+    (example: CNI_ARGS="IP=10.10.0.1/24;GATEWAY=10.10.0.254")
+
+The plugin also support following [capability argument](https://github.com/containernetworking/cni/blob/master/CONVENTIONS.md).
+
+* `ips`: Pass IP addresses for CNI interface
+
+The following [args conventions](https://github.com/containernetworking/cni/blob/master/CONVENTIONS.md#args-in-network-config) are supported:
+
+* `ips` (array of strings): A list of custom IPs to attempt to allocate, with prefix (e.g. '10.10.0.1/24')
+
+Notice: If some of above are used at same time, only one will work according to the priorities below
+
+1. [capability argument](https://github.com/containernetworking/cni/blob/master/CONVENTIONS.md)
+1. [args conventions](https://github.com/containernetworking/cni/blob/master/CONVENTIONS.md#args-in-network-config)
+1. [CNI_ARGS](https://github.com/containernetworking/cni/blob/master/SPEC.md#parameters)