Add cookbook on how to use Antrea with Multus

[antoninbas]

We add documentation to show how Antrea can be used with Multus: Antrea
is used as the default CNI plugin and an "arbitrary" plugin (in our
case, macvlan) can be used to attach additional interfaces to designated
Pods. Nothing is required on the Antrea side to make it work, so this is
just to show how it can be used in practice.

Fixes #368

[antrea-bot]

Thanks for your PR.
Unit tests and code linters are run automatically every time the PR is updated.
E2e, conformance and network policy tests can only be triggered by a member of the vmware-tanzu organization. Regular contributors to the project should join the org.

The following commands are available:

• /test-e2e: to trigger e2e tests.
• /skip-e2e: to skip e2e tests.
• /test-conformance: to trigger conformance tests.
• /skip-conformance: to skip conformance tests.
• /test-whole-conformance: to trigger all conformance tests on linux.
• /skip-whole-conformance: to skip all conformance tests on linux.
• /test-networkpolicy: to trigger networkpolicy tests.
• /skip-networkpolicy: to skip networkpolicy tests.
• /test-windows-conformance: to trigger windows conformance tests.
• /skip-windows-conformance: to skip windows conformance tests.
• /test-windows-networkpolicy: to trigger windows networkpolicy tests.
• /skip-windows-networkpolicy: to skip windows networkpolicy tests.
• /test-hw-offload: to trigger ovs hardware offload test.
• /skip-hw-offload: to skip ovs hardware offload test.
• /test-all: to trigger all tests (except whole conformance).
• /skip-all: to skip all tests (except whole conformance).

[codecov-commenter]

Codecov Report

Merging #1223 into master will decrease coverage by 0.03%.
The diff coverage is n/a.

@@            Coverage Diff             @@
##           master    #1223      +/-   ##
==========================================
- Coverage   54.99%   54.96%   -0.04%     
==========================================
  Files         110      110              
  Lines       10573    10573              
==========================================
- Hits         5815     5811       -4     
- Misses       4185     4187       +2     
- Partials      573      575       +2     

Flag	Coverage Δ
#integration-tests	44.96% <ø> (ø)
#unit-tests	41.76% <ø> (-0.05%)	⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

Impacted Files	Coverage Δ
pkg/apiserver/handlers/endpoint/handler.go	58.82% <0.00%> (-11.77%)	⬇️
pkg/apiserver/storage/ram/store.go	77.44% <0.00%> (-1.51%)	⬇️

[jianjuns]

Took a quick review. Overall looks good to me. Feel a little uncertain regarding to the DHCP daemon Docker image.

[jianjuns]

I feel this description is not accurate, for promisc mode is configured on the NIC device, but not on the network, and if the underlay network supports MAC learning promisc mode NICs should work fine.
But I know some hypervisor networking requires promisc mode settings on the vSwitch port, and other documentation describes it the same way, so probably not a big deal.

[jianjuns]

And this requirement should be for macvlan bridge mode only?

[antoninbas]

I clarified by mentioning that this is for macvlan "bridge" mode.

Regarding your first comment, I don't think the following is too misleading:

macvlan requires the network to be able to handle "promiscuous mode"

A lot of pieces can be involved:

• hypervisor
• physical NIC
• underlying network: won't work on public cloud (as you said it needs to support MAC learning)

[jianjuns]

Not disagree what you said.

[jianjuns]

Would you consider ToT of the master?

[antoninbas]

Done

[jianjuns]

Not sure if it is too much for us to maintain a DHCP daemon image to demonstrate Multus.

[antoninbas]

I don't believe this will be a maintenance burden. I can always move the image to my personal Github / Dockerhub accounts, but I don't think this is a better solution. I couldn't find a good existing image anywhere either.

[jianjuns]

Ok. No strong opinion on this.

[jianjuns]

A few extra comments.

[jianjuns]

Network Preferences -> Network Preferences?

[antoninbas]

Replaced with the actual menu names: Preferences ... > Network

[jianjuns]

I am not sure I understood this sentence. Would you consider rephrasing?

[antoninbas]

Hopefully it's clearer now, especially with the pointer to the Prerequisites section

[jianjuns]

Do you think better to add "br-int" to the OVS bridge box?

[antoninbas]

Done, thanks for pointing this out, I don't know how I missed adding this the first time

[antoninbas]

/skip-all