Add documentation for noEncap and hybrid modes, and kube-router

[jianjuns]

No description provided.

[jianjuns]

Did not find documentations for how to configure cloud providers. Probably we need more work to figure out how to configure each of them.

[antoninbas]

For in-tree providers, as far as I know, the --configure-cloud-routes flag for kube-controller-manager needs to be set to true. I am not aware of any other requirement. At the moment, the flag also requires --allocate-node-cidrs, but that's a requirement for Antrea anyway.

I believe the flag will work for Azure, GCP, AWS. I don't know about vSphere though, maybe @dantingl knows.

[jianjuns]

Yes, I know --configure-cloud-routes, but there can be other requirements depending on the clouds. For example, Azure seems require a separate routing table being created.

[jianjuns]

I do not want to talk about NSX-T configuration here - there will be lots of details (T1, etc.) to talk. Hopefully Danting can enhance vSphere CP documentation for route configuration, then we can just put a link here.

[antoninbas]

I see, there is the --cloud-config flag that takes an arbitrary configuration file, which is cloud-specific.

[jianjuns]

@antoninbas : like to learn what you think about the current version.

[codecov-io]

Codecov Report

❗ No coverage uploaded for pull request base (main@e61cfbc). Click here to learn what that means.
The diff coverage is n/a.

@@           Coverage Diff           @@
##             main    #1798   +/-   ##
=======================================
  Coverage        ?   42.84%           
=======================================
  Files           ?      108           
  Lines           ?    13597           
  Branches        ?        0           
=======================================
  Hits            ?     5825           
  Misses          ?     7286           
  Partials        ?      486           

Flag	Coverage Δ
unit-tests	42.84% <0.00%> (?)

Flags with carried forward coverage won't be shown. Click here to find out more.

[antoninbas]

it requires the Node network to allow Pod IP addresses to be sent out

or

it requires that the Node network allow Pod IP addresses to be sent out

[jianjuns]

Updated.

[antoninbas]

maybe we should not include this snippet unless there is a strong reason to, as then we will need to keep it in sync I feel like the instructions above are clear enough.

[jianjuns]

What you think about:

```yaml
trafficEncapMode: noEncap

Or:

```yaml
  antrea-agent.conf: |
    ... ...
    trafficEncapMode: noEncap
    ... ...

[antoninbas]

second one looks good to me

[antoninbas]

Suggested change

	After changing the option, you can deploy Antrea with the `Hybrid` mode by:
	After changing the configuration option, you can deploy Antrea in `Hybrid` mode with the usual command:

[jianjuns]

Updated.

[antoninbas]

For in-tree providers, as far as I know, the --configure-cloud-routes flag for kube-controller-manager needs to be set to true. I am not aware of any other requirement. At the moment, the flag also requires --allocate-node-cidrs, but that's a requirement for Antrea anyway.

I believe the flag will work for Azure, GCP, AWS. I don't know about vSphere though, maybe @dantingl knows.

[antoninbas]

same comment as above

[antoninbas]

To deploy kube-router in advertisement-only mode

[jianjuns]

Done.

[antoninbas]

nit: use back ticks around --peer-router-asns and --peer-router-ips

[jianjuns]

Done.

[antoninbas]

s/by/with

[jianjuns]

Done

[antoninbas]

s/with the NoEncap mode/in NoEncap mode

[jianjuns]

Done

[antoninbas]

verify that the kube-router Pods

[jianjuns]

Done

[antoninbas]

I think you mean noSNAT: true?

[jianjuns]

I wanted to show the default value, but yes it seems confusing. Changed to: noSNAT: false.

[antoninbas]

LGTM

[antoninbas]

    noSNAT: false # or true to disable Antrea SNAT for external traffic

[jianjuns]

/skip-all