Skip to content

Run LLDPd as DaemonSet

Tested with:

Component Version
OpenShift v4.18.14

Create project/namespace

Info

Empty node selector, to run the lldpd on all nodes

1
oc apply -f https://examples.openshift.pub/networking/lldpd/namespace.yaml

1
2
3
4
5
6
7
apiVersion: v1
kind: Namespace
metadata:
  annotations:
    openshift.io/node-selector: ""
  name: infra-lldpd
spec: {}

Build the LLDPd Image (RHEL Image)

1
oc apply -f https://examples.openshift.pub/networking/lldpd/build.yaml

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
apiVersion: shipwright.io/v1beta1
kind: Build
metadata:
  name: lldpd
  namespace: infra-lldpd
spec:
  source:
    type: Git
    git:
      url: https://github.com/openshift-examples/web
    contextDir: content/networking/lldp
  strategy:
    name: buildah
    kind: ClusterBuildStrategy
  paramValues:
    - name: dockerfile
      value: Containerfile
  volumes:
    - csi:
        driver: csi.sharedresource.openshift.io
        readOnly: true
        volumeAttributes:
          sharedSecret: etc-pki-entitlement
      name: etc-pki-entitlement
  output:
    image: image-registry.openshift-image-registry.svc:5000/infra-lldpd/lldpd:latest

Run lldpd

1
oc apply -f https://examples.openshift.pub/networking/lldpd/daemonset.yaml

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
apiVersion: v1
kind: ServiceAccount
metadata:
  name: lldpd
  namespace: infra-lldpd
---
apiVersion: rbac.authorization.k8s.io/v1
kind: RoleBinding
metadata:
  name: system:openshift:scc:privileged
  namespace: infra-lldpd
roleRef:
  apiGroup: rbac.authorization.k8s.io
  kind: ClusterRole
  name: system:openshift:scc:privileged
subjects:
  - kind: ServiceAccount
    name: lldpd
---
apiVersion: apps/v1
kind: DaemonSet
metadata:
  name: lldpd
  namespace: infra-lldpd
spec:
  selector:
    matchLabels:
      name: lldpd
  template:
    metadata:
      annotations:
        openshift.io/required-scc: "privileged"
      labels:
        name: lldpd
    spec:
      imagePullSecrets:
        - name: rbohne-rhel-lldp-pull-secret
      serviceAccountName: lldpd
      tolerations:
        - key: "node-role.kubernetes.io/master"
          operator: "Exists"
          effect: "NoSchedule"
      containers:
        - name: lldpd
          image: image-registry.openshift-image-registry.svc:5000/infra-lldpd/lldpd:latest
          env:
            - name: DAEMON_ARGS
              value: "-l -c"
          securityContext:
            capabilities:
              add: ["NET_RAW", "NET_ADMIN", "SYS_CHROOT"]
      hostPID: true
      hostNetwork: true

Check lldpd

Run daemonset/lldpd lldpcli show neighbors 
 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
oc rsh daemonset/lldpd lldpcli show neighbors
-------------------------------------------------------------------------------
LLDP neighbors:
-------------------------------------------------------------------------------
Interface:    enp79s0f0, via: LLDP, RID: 1, Time: 0 day, 00:01:16
Chassis:
    ChassisID:    mac 00:1c:73:7f:b4:d7
    SysName:      arista-rj45.coe.muc.redhat.com
    SysDescr:     Arista Networks EOS version 4.27.0F running on an Arista Networks DCS-7050TX-64
    MgmtIP:       10.32.104.2
    MgmtIface:    999001
    Capability:   Bridge, on
    Capability:   Router, off
Port:
    PortID:       ifname Ethernet20
    TTL:          120
-------------------------------------------------------------------------------
Interface:    enp79s0f1, via: LLDP, RID: 1, Time: 0 day, 00:01:17
Chassis:
    ChassisID:    mac 00:1c:73:7f:b4:d7
    SysName:      arista-rj45.coe.muc.redhat.com
    SysDescr:     Arista Networks EOS version 4.27.0F running on an Arista Networks DCS-7050TX-64
    MgmtIP:       10.32.104.2
    MgmtIface:    999001
    Capability:   Bridge, on
    Capability:   Router, off
Port:
    PortID:       ifname Ethernet15
    TTL:          120
-------------------------------------------------------------------------------
Interface:    veth543afbbd, via: CDPv2, RID: 3, Time: 0 day, 00:01:05
Chassis:
    ChassisID:    local ocp1-worker-0.ocp1.stormshift.coe.muc.redhat.com
    SysName:      ocp1-worker-0.ocp1.stormshift.coe.muc.redhat.com
    SysDescr:     Linux running on
                Red Hat Enterprise Linux 9.6 (Plow) Linux 5.14.0-427.72.1.el9_4.x86_64 #1 SMP PREEMPT_DYNAMIC Fri May 30 09:53:21 EDT 2025 x86_64
    MgmtIP:       10.131.0.2
    Capability:   Station, on
Port:
    PortID:       ifname enp1s0
    PortDescr:    enp1s0
    TTL:          120
-------------------------------------------------------------------------------
Run lldp neighbors at switch 
 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
arista-rj45#show lldp neighbors
Last table change time   : 0:02:13 ago
Number of table inserts  : 80
Number of table deletes  : 53
Number of table drops    : 0
Number of table age-outs : 1

Port            Neighbor Device ID                   Neighbor Port ID    TTL
------------ ------------------------------------ ---------------------- ---
Et1             sw01-dist-lab.muc.redhat.com         ge-0/0/1            120
Et9             ucs56.isar.coe.muc.redhat.com        80e0.1d36.ffac      120
Et11            ecf4.bbf1.0470                       00f4.bbf1.0470      120
Et13            storm2.isar.coe.muc.redhat.com       ecf4.bbf1.6b28      120
Et15            ucs55.isar.coe.muc.redhat.com        70e4.22c4.290c      120
Et17            ceph10.isar.coe.muc.redhat.com       a036.9f07.ffff      120
Et19            ceph11.isar.coe.muc.redhat.com       a036.9f07.ffff      120
Et20            ucs55.isar.coe.muc.redhat.com        70e4.22c4.290a      120
Et21            ceph12.isar.coe.muc.redhat.com       a036.9f06.8e2e      120
Et22            ucs56.isar.coe.muc.redhat.com        80e0.1d36.ffae      120
Et24            storm6.isar.coe.muc.redhat.com       a036.9fe5.0d9e      120
Et31            storm3.isar.coe.muc.redhat.com       ecf4.bbf1.4ef2      120
Et32            storm5.isar.coe.muc.redhat.com       a036.9fe5.14bc      120
Et33            storm2.isar.coe.muc.redhat.com       ecf4.bbf1.6b2a      120
Et34            storm5.isar.coe.muc.redhat.com       a036.9fe5.14be      120
Et35            ucs57.isar.coe.muc.redhat.com        58ac.7803.18b2      120
Et36            ucs57.isar.coe.muc.redhat.com        58ac.7803.18b0      120
Et37            storm6.isar.coe.muc.redhat.com       a036.9fe5.0d9c      120
Et40            storm3.isar.coe.muc.redhat.com       ecf4.bbf1.4ef0      120
Et41            ceph11.isar.coe.muc.redhat.com       a036.9f07.032c      120
Et45            ceph10.isar.coe.muc.redhat.com       a036.9f07.04c0      120
Et47            ceph12.isar.coe.muc.redhat.com       a036.9f06.8e2c      120
Et52/1          arista-sfp.coe.muc.redhat.com        Ethernet19/1        120
Et52/2          arista-sfp.coe.muc.redhat.com        Ethernet19/2        120
Et52/3          arista-sfp.coe.muc.redhat.com        Ethernet19/3        120
Et52/4          arista-sfp.coe.muc.redhat.com        Ethernet19/4        120
Ma1             sw01-dist-lab.muc.redhat.com         ge-0/0/43           120
2025-08-14 2025-06-13 Contributors: Robert Bohne