Skip to main content
Malaysia
AIMenta
A

Antrea

by VMware / Broadcom

Kubernetes CNI plugin built on Open vSwitch with ClusterNetworkPolicy, traffic flow export, and native VMware NSX integration for APAC enterprise environments.

Visit Antrea (opens in new tab) Get a recommendation
AIMenta verdict
Decent fit
4/5

"OVS-based Kubernetes CNI with network policy — APAC platform teams use Antrea for Kubernetes networking with Open vSwitch data plane, ClusterNetworkPolicy for APAC multi-namespace isolation, and built-in APAC traffic visibility through flow export and Antrea monitoring."

Features
6
Use cases
1
Watch outs
3
What it does

Key features

  • OVS data plane for mature, hardware-accelerated APAC packet processing
  • ClusterNetworkPolicy: cluster-wide tiered policy with APAC priority ordering
  • Antrea Network Policy: namespace-scoped policies with APAC richer selectors
  • Traceflow: interactive APAC packet-level network policy debugging
  • Flow export: IPFIX-based APAC traffic visibility to monitoring platforms
  • Native VMware NSX integration for APAC enterprise network management
When to reach for it

Best for

  • APAC VMware-centric enterprise environments deploying Kubernetes who want CNI with native NSX integration, tiered network policy for multi-tenant APAC clusters, and interactive network debugging.
Don't get burned

Limitations to know

  • ! Smaller APAC community than Calico and Cilium for third-party integrations
  • ! OVS adds complexity for APAC network engineers unfamiliar with Open vSwitch
  • ! VMware/Broadcom stewardship creates uncertainty for APAC long-term roadmap
Context

About Antrea

Antrea is an open-source Kubernetes CNI plugin from VMware (now Broadcom) built on Open vSwitch (OVS), designed for APAC enterprise environments that need a full-featured Kubernetes networking solution with tight VMware ecosystem integration. APAC platform teams use Antrea for Kubernetes pod networking with ClusterNetworkPolicy — Antrea's extension of standard Kubernetes NetworkPolicy that supports cluster-scope rules, tiered policy priority, and APAC multi-namespace policy application without duplicating rules per namespace.

Antrea's Antrea Network Policy (ANP) and ClusterNetworkPolicy (ACNP) resources enable APAC platform administrators to define cluster-wide network governance rules that take precedence over developer-defined namespace policies — separating APAC platform-level security baseline rules from APAC application-level access control. This tiered policy model is particularly valuable for APAC multi-tenant clusters where different teams need different isolation levels.

Antrea's Traceflow feature provides interactive APAC network troubleshooting: APAC platform engineers can send a diagnostic packet between any two APAC pods and trace its exact path through OVS datapath, identifying which network policy rules dropped or allowed the packet — dramatically reducing APAC network policy debugging time compared to trial-and-error rule modification.

Beyond this tool

Where this category meets practice depth.

A tool only matters in context. Browse the service pillars that operationalise it, the industries where it ships, and the Asian markets where AIMenta runs adoption programs.

Or browse All tools · Encyclopedia · Case studies · Rankings