SCTP support (beta)
Note
This is a beta feature. Please provide feedback and file a GitHub issue if you experience any problems.
Enabling
Pass --set sctp.enabled=true to helm.
Video
You can also watch a video explanation of Cilium’s SCTP support in eCHO episode 78: Stream Control Transmission Protocol (SCTP).
Limitations
- Cilium supports basic SCTP support. Specifically, the following is supported:
Pod <-> Pod communication
Pod <-> Service communication [*]
Pod <-> Pod communication with network policies applied to SCTP traffic [*]
Note
[*] SCTP support does not support rewriting ports for SCTP packets. This means that when defining services, the targetPort MUST equal the port, otherwise the packet will be dropped.
Warning
- Cilium does not support the following for SCTP:
Multihoming
Policies for pod-to-VIP
Kube-proxy replacement (KPR) when port rewriting is necessary: for example, NodePort Services are not supported with the combination of KPR and SCTP.
BPF masquerading
Egress gateway