New features

MOSK 23.2 features

Component	Support scope	Feature
OpenStack	TechPreview	Parallel node update
	Full	Automatic cleanup of OpenStack metadata during node removal
	TechPreview	Workload monitoring
	TechPreview	BGP dynamic routing
Security	Full	Encryption of exposable OpenStack notification endpoint
	Full	Secure live migration of OpenStack instances
Tungsten Fabric	TechPreview	Tungsten Fabric graceful restart and long-lived graceful restart
	TechPreview	External storage for Tungsten Fabric
Major version changes	Full	MKE 3.6 support
	Full	Keycloak Quarkus
	Full	Ceph Quincy
Other components	TechPreview	Cephless cloud architecture
	TechPreview	Support for WireGuard
	TechPreview	Custom host names for cluster machines
	TechPreview	Support for auditd
Documentation	n/a	Workload onboarding tutorial

Parallel node update

TechPreview

Implemented the capability to parallelize OpenStack, Ceph, and Tungsten Fabric node update operations, significantly improving the efficiency of MOSK deployments. The parallel node update feature applies to any operation that utilizes the Node Maintenance API, such as cluster updates or graceful node reboots.

Learn more

• Reference Architecture: Parallelizing node update operations

• Operations Guide - Update cluster: Enable parallel update of Kubernetes worker nodes

Automatic cleanup of OpenStack metadata during node removal

Implemented the automatic removal of OpenStack-related metadata during the graceful machine deletion.

Learn more

Operations Guide: Delete a compute node

Workload monitoring

TechPreview

Implemented the OpenStack workload monitoring feature through the Cloudprober exporter.

After enablement and proper configuration, the exporter allows for monitoring the availability of instance floating IP addresses per OpenStack compute node and project, as well as viewing the probe statistics for individual instance floating IP addresses through the Openstack Instances Availability dashboard in Grafana.

Learn more

• Reference Architecture: Workload monitoring

• Operations Guide: Configure monitoring of instance availability

• Operations Guide: Cloudprober alerts

BGP dynamic routing

TechPreview

Introduced the Technology Preview support for the BGP dynamic routing extension to the Networking service (OpenStack Neutron) that will be particularly useful for the MOSK clouds where private networks managed by cloud users need to be transparently integrated into the networking of the data center.

Learn more

Reference Architecture: BGP dynamic routing

Encryption of exposable OpenStack notification endpoint

Implemented the encryption of the exposed message bus (RabbitMQ) endpoint for secure connection.

Learn more

Reference Architecture: Exposable OpenStack notifications

Secure live migration of OpenStack instances

Implemented the TLS encryption feature for QEMU and libvirt to secure all data transports during live migration, including disks not on shared storage.

Learn more

• Security Guide: Encryption of live migration data

• Reference Architecture: Live migration configuration

Tungsten Fabric graceful restart and long-lived graceful restart

Available since MOSK 23.2 for Tungsten Fabric 21.4 only TechPreview

Added support for graceful restart and long-lived graceful restart allowing for a more efficient and robust routing experience for Tungsten Fabric. These features enhance the speed at which routing tables converge, specifically when dealing with BGP router restarts or failures.

Learn more

Reference Architecture: Graceful restart and long-lived graceful restart

External storage for Tungsten Fabric

TechPreview

Implemented Technology Preview support for configuring a remote NFS storage for Tungsten Fabric data backup and restoration.

Learn more

Reference Architecture: Remote storage for Tungsten Fabric database backups

MKE 3.6 support

Introduced support for Mirantis Kubernetes Engine (MKE) 3.6 with Kubernetes 1.24. MOSK clusters are updated to the latest supported MKE version during the cluster update.

Learn more

MKE 3.6 Release Notes

Keycloak Quarkus

Upgraded Keycloak major version from 18.0.0 to 21.1.1 during the Cluster version update.

Learn more

Keycloak Release Notes

Ceph Quincy

Upgraded Ceph major version from Pacific to Quincy with an automatic upgrade of Ceph components during the Cluster version update.

Learn more

Ceph Quincy Release Notes

Cephless cloud architecture

TechPreview

Implemented the capability to configure a MOSK cluster without Ceph and, for example, rely on external storage appliances to host their data instead.

Learn more

Reference Architecture: Cephless cloud

Support for WireGuard

TechPreview

Added initial Technology Preview support for WireGuard that enables traffic encryption on the Kubernetes workloads network.

Learn more

• Calico documentation: Encrypt in-cluster pod traffic

• Mirantis Container Cloud documentation: Create a bare metal managed cluster using web UI

• Mirantis Container Cloud documentation: Set the MTU size for Calico

Custom host names for cluster machines

TechPreview

Added initial Technology Preview support for custom host names of cluster machines. When enabled, any machine host name in a particular region matches the related Machine object name.

Learn more

Mirantis Container Cloud documentation: Configure host names for cluster machines

Support for auditd

TechPreview

Added initial Technology Preview support for the Linux Audit daemon auditd to monitor activity of cluster processes that allow for detection of potential malicious activity.

Learn more

Mirantis Container Cloud documentation: Create a cluster using web UI

Workload onboarding tutorial

Added a tutorial to help you build your first cloud application and onboard it to a MOSK cloud. It will guide you through the process of deploying a simple application using the cloud web UI (OpenStack Horizon).

Learn more

User Guide: Deploy your first cloud application using cloud web UI