/calico

Cloud native networking and network security

Primary LanguageHTMLApache License 2.0Apache-2.0

Slack Status IRC Channel Docker Pulls

Calico

Calico is an open source networking and network security solution for containers, virtual machines, and bare-metal workloads. Calico uses standard Linux networking tools to provide two major services for Cloud Native applications:

  • Network connectivity between workloads.
  • Network security policy enforcement between workloads.

Calico’s flexible architecture supports a wide range of deployment options, using modular components, including:

  • CNI plugins for Kubernetes to provide highly efficient pod networking and IP Address Management (IPAM).
  • A Neutron ML2 plugin to provide VM networking for OpenStack.
  • A policy engine, Felix, to provide enforcement of the full set of Kubernetes network policy features, plus for those needing a richer set of policy features, Calico network policies.
  • Both non-overlay and overlay (via IPIP or VXLAN) networking options in either public cloud or on-prem deployments.
  • A BGP routing stack that can advertise routes for workload and service IP addresses to physical network infrastructure such as Top of Rack routers (ToRs).
  • A simple command line interface, calicoctl, for managing Calico configuration and Calico network policies.

Getting Started Running Calico

There are many avenues to get started with Calico depending on your situation.

Getting Started Developing Calico

Calico is an open source project, and welcomes your contribution, be it through code, a bug report, a feature request, or user feedback.

Join the Calico Community!

The Calico community is committed to fostering an open and welcoming environment, with several ways to engage with other users and developers. You can find out more about our monthly meetings, Slack group, and Discourse by visiting our Community Repository.

License

Calico is available under the Apache 2.0 license. See the LICENSE file for details.