# Romana
Romana是Panic Networks在2016年提出的开源项目,旨在解决Overlay方案给网络带来的开销。
## Kubernetes部署
对使用kubeadm部署的Kubernetes集群:
```bash
kubectl apply -f https://raw.githubusercontent.com/romana/romana/master/docs/kubernetes/romana-kubeadm.yml
```
对使用kops部署的Kubernetes集群:
```bash
kubectl apply -f https://raw.githubusercontent.com/romana/romana/master/docs/kubernetes/romana-kops.yml
```
使用kops时要注意
* 设置网络插件使用CNI `--networking cni`
* 对于aws还提供`romana-aws`和`romana-vpcrouter`自动配置Node和Zone之间的路由
## 工作原理
.png?alt=media)
* layer 3 networking,消除overlay带来的开销
* 基于iptables ACL的网络隔离
* 基于hierarchy CIDR管理Host/Tenant/Segment ID
.png?alt=media)
## 优点
* 纯三层网络,性能好
## 缺点
* 基于IP管理租户,有规模上的限制
* 物理设备变更或地址规划变更麻烦
**参考文档**
*
* [Romana basics](http://romana.io/how/romana_basics/)
* [Romana Github](https://github.com/romana/romana)
* [Romana 2.0](http://romana.readthedocs.io/en/latest/index.html)
---
# Agent Instructions: Querying This Documentation
If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.
Perform an HTTP GET request on the current page URL with the `ask` query parameter:
```
GET https://kubernetes.feisky.xyz/extension/network/romana.md?ask=
```
The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.
Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.