Help Center/ Cloud Container Engine/ User Guide/ Network/ Container Network/ Pod Network Settings/ Configuring QoS for a Pod
Updated on 2025-01-07 GMT+08:00
View PDF
Share

Configuring QoS for a Pod

Scenario

Bandwidth preemption occurs between different containers deployed on the same node, which may cause service jitter. You can configure bandwidth limitation for the pod to solve this problem.

Bandwidth Limitation Specifications

The following table lists the bandwidth limitation specifications of pods.

Specifications

Tunnel

VPC

Cloud Native Network 2.0

Supported cluster versions

All versions

Clusters of v1.19.10 and later

Clusters of v1.19.10 and later

Egress bandwidth limitation

Supported

Supported

Supported

Ingress bandwidth limitation

Supported

Supported

Supported

Scenarios where bandwidth limitation is not supported

None

None
  • Pod access to cloud service CIDR blocks such as 100.125.0.0/16
  • Pod health check

Bandwidth limitation range

Only the rate limit in the unit of Mbit/s or Gbit/s is supported, for example, 100 Mbit/s and 1 Gbit/s. The minimum value is 1 Mbit/s and the maximum value is 4.29 Gbit/s.
  • Pod bandwidth limitation applies to regular containers (runC as the container runtime), not secure containers (Kata Containers as the container runtime).
  • Pod bandwidth limitation does not apply to hostNetwork pods.

Using the CCE Console

When creating a workload on the console, you can set pod ingress and egress bandwidth limits by clicking Network Configuration in the Advanced Settings area.

Figure 1 Network settings

Using kubectl

You can add annotations to a workload to specify its egress and ingress bandwidth. 
apiVersion: apps/v1
kind: Deployment
metadata:
  name: test
  namespace: default
  labels:
    app: test
spec:
  replicas: 2
  selector:
    matchLabels: 
      app: test
  template:
    metadata:
      labels:
        app: test
      annotations:
        kubernetes.io/ingress-bandwidth: 100M
        kubernetes.io/egress-bandwidth: 100M
    spec:
      containers:
        - name: container-1
          image: nginx:alpine
          imagePullPolicy: IfNotPresent
      imagePullSecrets:
        - name: default-secret
  • kubernetes.io/ingress-bandwidth: ingress bandwidth of the pod
  • kubernetes.io/egress-bandwidth: egress bandwidth of the pod

If these two parameters are not specified, the bandwidth is not limited.

After modifying the ingress or egress bandwidth limit of a pod, restart the container for the modification to take effect. After annotations are modified in a pod not managed by workloads, the container will not be restarted, so the bandwidth limits do not take effect. You can create a pod again or manually restart the container.

Parent Topic: Pod Network Settings