All Products
Search

This Product

    Container Service for Kubernetes:Terway release notes

    Document Center

    Container Service for Kubernetes:Terway release notes

    Last Updated:Mar 26, 2026

    Terway is an open-source Container Network Interface (CNI) plugin developed by Alibaba Cloud for Container Service for Kubernetes (ACK). It uses Elastic Network Interfaces (ENIs) and eBPF to provide high-performance pod networking, and supports standard Kubernetes network policies.

    Introduction

    Terway builds on Alibaba Cloud's ENIs and Virtual Private Cloud (VPC) to provide high-performance pod networking. It uses extended Berkeley Packet Filter (eBPF) to accelerate network traffic and reduce latency, and supports standard Kubernetes network policies for defining access rules between containers.

    Each pod gets its own network stack and IP address. Pods on the same Elastic Compute Service (ECS) instance communicate via internal forwarding on the host; cross-node traffic routes directly through VPC ENIs. Because Terway avoids tunnel encapsulation technologies such as Virtual Extensible Local Area Network (VXLAN), it delivers high network performance.

    Supported Kubernetes versions

    Terway version Kubernetes version
    ≥ 1.10 ≥ Kubernetes 1.31
    1.9 ≥ Kubernetes 1.30
    1.8 ≥ Kubernetes 1.24

    Usage notes

    For usage instructions, see Work with Terway.

    Release notes

    March 2026

    Version Image address Release date Description Impact
    v1.16.8 registry-cn-hangzhou.ack.aliyuncs.com/acs/terway:v1.16.8 2026-03-02
    Note

    This version is a canary release. Bug fix: Fixed an issue where data plane configuration checks in IPVLAN mode caused excessive resource consumption. Bug fix: Fixed a node map leak in DatapathV2 mode. Bug fix: Fixed an issue where Lingjun network interface controllers (NICs) could not be deleted after creation failed. Improvement: Symmetric routing is adapted for nftables.

    		 No negative impact on workloads.

    January 2026

    Version Image address Release date Description Impact
    v1.16.7 registry-cn-hangzhou.ack.aliyuncs.com/acs/terway:v1.16.7 2026-01-14 Bug fix: Fixed a potential device or resource busy issue in exclusive ENI mode for Lingjun nodes. No negative impact on workloads.
    v1.16.6 registry-cn-hangzhou.ack.aliyuncs.com/acs/terway:v1.16.6 2026-01-05 Bug fix: Fixed an issue where security groups did not take effect for Trunk-type pods on nodes with Kube Proxy Replacement enabled. Improvement: Upgraded Cilium to v1.16.18. Improvement: Optimized handling of evicted pods. Improvement: Optimized NIC topology handling for Lingjun nodes. No negative impact on workloads. For large clusters, Cilium-related CustomResourceDefinitions (CRDs) are updated during the upgrade, which may temporarily increase kube-apiserver load. Monitor kube-apiserver resource usage.
    v1.16.5 registry-cn-hangzhou.ack.aliyuncs.com/acs/terway:v1.16.5 2026-01-04 Improvement: Optimized the shared ENI mount process. Bug fix: Fixed a naming conflict issue for multiple NICs in exclusive ENI mode. No negative impact on workloads.

    December 2025

    Version Image address Release date Description Impact
    v1.16.4 registry-cn-hangzhou.ack.aliyuncs.com/acs/terway:v1.16.4 2025-12-09 Bug fix: Fixed an issue with Trunk-type pods in Alibaba Cloud Linux 4. Improvement: Updated internal communication IP handling in exclusive ENI mode. \[Product change\] Internal communication IP change for Terway exclusive ENI mode. No negative impact on workloads.

    November 2025

    Version Image address Release date Description Impact
    v1.16.2 registry-cn-hangzhou.ack.aliyuncs.com/acs/terway:v1.16.2 2025-11-21 Bug fix: Fixed a hairpin access issue in IPVLAN mode. Improvement: Adapted for ECS idempotence error codes. Improvement: Optimized IP rule synchronization timing. Improvement: Improved IP allocation efficiency for exclusive-mode pods. Feature: Shared ENI mode is adapted for new Lingjun instance types. No negative impact on workloads.
    v1.9.18 registry-cn-hangzhou.ack.aliyuncs.com/acs/terway:v1.9.18 2025-11-12 Improvement: Adapted for Alibaba Cloud Linux 4. No negative impact on workloads.

    October 2025

    Version Image address Release date Description Impact
    v1.16.1 registry-cn-hangzhou.ack.aliyuncs.com/acs/terway:v1.16.1 2025-10-24 Bug fix: Fixed an issue with Lingjun nodes using Virtual Functions (VFs). No negative impact on workloads.
    v1.16.0 registry-cn-hangzhou.ack.aliyuncs.com/acs/terway:v1.16.0 2025-10-13 Improvement: Optimized TerwayControlplane startup speed. Feature: Added support for configuring idle IP reclamation policies. No negative impact on workloads.

    September 2025

    Version Image address Release date Description Impact
    v1.15.3 registry-cn-hangzhou.ack.aliyuncs.com/acs/terway:v1.15.3 2025-09-16 Bug fix: Fixed an issue with Lingjun topology configuration. Improvement: Adapted for Alibaba Cloud Linux 4. No negative impact on workloads.
    v1.15.2 registry-cn-hangzhou.ack.aliyuncs.com/acs/terway:v1.15.2 2025-09-10 Improvement: Adapted for Lingjun topology configuration. No negative impact on workloads.

    August 2025

    Version Image address Release date Description Impact
    v1.15.1 registry-cn-hangzhou.ack.aliyuncs.com/acs/terway:v1.15.1 2025-08-29 Improvement: Adapted for Lingjun high-density instance types. No negative impact on workloads.
    v1.15.0 registry-cn-hangzhou.ack.aliyuncs.com/acs/terway:v1.15.0 2025-08-11 Improvement: Upgraded Cilium to v1.16.12. Feature: Added support for configuring symmetric routing. Feature: Added support for configuring IP reclamation periods. Bug fix: Fixed an issue where IPv6 routes were repeatedly added. No negative impact on workloads.

    July 2025

    Version Image address Release date Description Impact
    v1.9.17 registry-cn-hangzhou.ack.aliyuncs.com/acs/terway:v1.9.17 2025-07-15 Feature: Added support for ContainerOS 3.5. No negative impact on workloads.
    v1.8.18 registry-cn-hangzhou.ack.aliyuncs.com/acs/terway:v1.8.18 2025-07-15 Feature: Added support for ContainerOS 3.5. No negative impact on workloads.
    v1.14.5 registry-cn-hangzhou.ack.aliyuncs.com/acs/terway:v1.14.5 2025-07-10 Improvement: Removed the dependency on socat for health checks. Bug fix: Fixed an issue where podENI resources were updated repeatedly. Feature: Added node-level network configuration support for exclusive ENI mode. No negative impact on workloads.

    June 2025

    Version Image address Release date Description Impact
    v1.14.4 registry-cn-hangzhou.ack.aliyuncs.com/acs/terway:v1.14.4 2025-06-11 Feature: Added support for hybrid cloud node pools. Feature: Supported adding Lingjun nodes with exclusive ENI network mode when upgrading ACK Pro clusters to Kubernetes 1.31 or later. No negative impact on workloads.
    v1.14.3 registry-cn-hangzhou.ack.aliyuncs.com/acs/terway:v1.14.3 2025-06-06 Bug fix: Fixed an issue that could cause Service access failures. Feature: Supported adding Lingjun nodes with exclusive ENI network mode to newly created ACK Pro clusters running Kubernetes 1.31 or later. No negative impact on workloads.
    v1.9.16 registry-cn-hangzhou.ack.aliyuncs.com/acs/terway:v1.9.16 2025-06-06 Feature: Added support for accessing ECS metadata in security hardening mode. No negative impact on workloads.
    v1.14.2 registry-cn-hangzhou.ack.aliyuncs.com/acs/terway:v1.14.2 2025-06-04 Bug fix: Fixed an issue where container health checks failed when network policies were in use. No negative impact on workloads.

    May 2025

    Version Image address Release date Description Impact
    v1.14.1 registry-cn-hangzhou.ack.aliyuncs.com/acs/terway:v1.14.1 2025-05-21 Bug fix: Fixed Lingjun elastic network interface (LENI) quota calculation issues. No negative impact on workloads.

    April 2025

    Version Image address Release date Description Impact
    v1.14.0 registry-cn-hangzhou.ack.aliyuncs.com/acs/terway:v1.14.0 2025-04-28 Improvement: Updated Cilium to 1.16. Feature: Added support for security hardening mode for ECS instance metadata access. Bug fix: Fixed IP address assignment failures in exclusive ENI mode. For DataPath V2 clusters: Cilium disables Prometheus port 9962 by default — to re-enable it, see Customize Terway configuration parameters. Access to LoadBalancer Services is rejected if no endpoint exists. For large clusters, Cilium-related CRDs are updated during the upgrade, which may temporarily increase kube-apiserver load. Monitor kube-apiserver resource usage. No negative impact on workloads.
    v1.13.7 registry-cn-hangzhou.ack.aliyuncs.com/acs/terway:v1.13.7 2025-04-07 Bug fix: Fixed an issue where vSwitch configurations did not take effect. No negative impact on workloads.

    March 2025

    Version Image address Release date Description Impact
    v1.9.15 registry-cn-hangzhou.ack.aliyuncs.com/acs/terway:v1.9.15 2025-03-31 Bug fix: Fixed a potential update failure issue. No negative impact on workloads.
    v1.13.6 registry-cn-hangzhou.ack.aliyuncs.com/acs/terway:v1.13.6 2025-03-17 Improvement: ENI security groups are now limited to 10. Improvement: Source and destination IP check is disabled by default for ENIs on ECS instances. Feature: Added support for ACK Lingjun nodes. Feature: Allowed PodNetworking configurations without selectors. Feature: Pods in exclusive ENI mode can now evenly distribute traffic across multiple NICs on the node. Bug fix: Fixed IP allocation failures caused by resource update conflicts. No negative impact on workloads.
    v1.9.14 registry-cn-hangzhou.ack.aliyuncs.com/acs/terway:v1.9.14 2025-03-17 Improvement: Source and destination IP check is disabled by default for ENIs on ECS instances. No negative impact on workloads.
    v1.8.17 registry-cn-hangzhou.ack.aliyuncs.com/acs/terway:v1.8.17 2025-03-17 Improvement: Source and destination IP check is disabled by default for ENIs on ECS instances. No negative impact on workloads.
    v1.13.5 registry-cn-hangzhou.ack.aliyuncs.com/acs/terway:v1.13.5 2025-03-12 Bug fix: Fixed a potential misconfiguration issue in Trunk-type pod gateways. No negative impact on workloads.

    February 2025

    Version Image address Release date Description Impact
    v1.13.4 registry-cn-hangzhou.ack.aliyuncs.com/acs/terway:v1.13.4 2025-02-20 Bug fix: Fixed a data collection issue in Hubble. No negative impact on workloads.

    January 2025

    Version Image address Release date Description Impact
    v1.13.3 registry-cn-hangzhou.ack.aliyuncs.com/acs/terway:v1.13.3 2025-01-22 Improvement: Optimized the validation logic for instances that do not support Trunk. Feature: Cilium Kubernetes client queries per second (QPS) is now configurable. Bug fix: Fixed a connection issue that occasionally occurred in hairpin mode. Bug fix: Fixed an issue where pod IP addresses could be released unexpectedly. Improvement: Optimized the pod IP allocation mechanism to reduce tail latency during assignment. No negative impact on workloads.
    v1.9.13 registry-cn-hangzhou.ack.aliyuncs.com/acs/terway:v1.9.13 2025-01-22 Feature: Cilium Kubernetes client QPS is now configurable. Bug fix: Fixed a connection issue that occasionally occurred in hairpin mode. Bug fix: Fixed an issue where pod IP addresses could be released unexpectedly. Improvement: Optimized the pod IP allocation mechanism to reduce tail latency during assignment. No negative impact on workloads.
    v1.8.16 registry-cn-hangzhou.ack.aliyuncs.com/acs/terway:v1.8.16 2025-01-22 Feature: Cilium Kubernetes client QPS is now configurable. Bug fix: Fixed a connection issue that occasionally occurred in hairpin mode. Bug fix: Fixed an issue where pod IP addresses could be released unexpectedly. Improvement: Optimized the pod IP allocation mechanism to reduce tail latency during assignment. No negative impact on workloads.

    December 2024

    Version Image address Release date Description Impact
    v1.13.2 registry-cn-hangzhou.ack.aliyuncs.com/acs/terway:v1.13.2 2024-12-30 Bug fix: Fixed a leak issue introduced by traffic control. Bug fix: Fixed a missing IP rule issue. Bug fix: Fixed an issue where tasks continuously retried when a vSwitch had insufficient IP addresses. No negative impact on workloads.
    v1.13.1 registry-cn-hangzhou.ack.aliyuncs.com/acs/terway:v1.13.1 2024-12-18 Bug fix: Fixed an inconsistent status issue that occurred when an ENI failed to be associated. Improvement: Reduced role-based access control (RBAC) permissions of Terway. No negative impact on workloads.
    v1.9.12 registry-cn-hangzhou.ack.aliyuncs.com/acs/terway:v1.9.12 2024-12-11 Bug fix: Fixed a resource conflict issue with ACK eRDMA Controller. No negative impact on workloads.
    v1.8.15 registry-cn-hangzhou.ack.aliyuncs.com/acs/terway:v1.8.15 2024-12-11 Bug fix: Fixed a resource conflict issue with ACK eRDMA Controller. No negative impact on workloads.
    v1.13.0 registry-cn-hangzhou.ack.aliyuncs.com/acs/terway:v1.13.0 2024-12-04 Bug fix: Fixed an issue where Terway could fail to work in Trunk mode. Feature: Added ingress quality of service (QoS) support in DataPath V2 mode. Improvement: IPVLAN mode is deprecated. The data plane switches to DataPath V2 mode after a node restart. No negative impact on workloads.

    November 2024

    Version Image address Release date Description Impact
    v1.12.1 registry-cn-hangzhou.ack.aliyuncs.com/acs/terway:v1.12.1 2024-11-22 Bug fix: Fixed an issue where the health check could fail in IPVLAN mode. No negative impact on workloads.
    v1.12.0 registry-cn-hangzhou.ack.aliyuncs.com/acs/terway:v1.12.0 2024-11-15 Bug fix: Fixed an issue where PodENI configurations could be overwritten in exclusive ENI mode. Bug fix: Fixed an issue where the ENI filter failed to take effect. Improvement: Terway DaemonSet no longer participates in leader election. No negative impact on workloads. After upgrading Terway in an ACK dedicated cluster to this version, terway-controlplane is installed by default.
    v1.9.10 registry-cn-hangzhou.ack.aliyuncs.com/acs/terway:v1.9.10 2024-11-15 Bug fix: Fixed an issue where the ENI filter failed to take effect. No negative impact on workloads.
    v1.8.14 registry-cn-hangzhou.ack.aliyuncs.com/acs/terway:v1.8.14 2024-11-15 Bug fix: Fixed an issue where the ENI filter failed to take effect. No negative impact on workloads.
    v1.11.4 registry-cn-hangzhou.ack.aliyuncs.com/acs/terway:v1.11.4 2024-11-07 Bug fix: Fixed an issue where NetworkPolicy could not handle ClusterIP. No negative impact on workloads.
    v1.9.9 registry-cn-hangzhou.ack.aliyuncs.com/acs/terway:v1.9.9 2024-11-07 Bug fix: Fixed an issue where NetworkPolicy could not handle ClusterIP. No negative impact on workloads.

    October 2024

    Version Image address Release date Description Impact
    v1.11.3 registry-cn-hangzhou.ack.aliyuncs.com/acs/terway:v1.11.3 2024-10-28 Bug fix: Fixed an issue where deleting the CNI plugin could affect existing pods. No negative impact on workloads.
    v1.9.8 registry-cn-hangzhou.ack.aliyuncs.com/acs/terway:v1.9.8 2024-10-17 Bug fix: Fixed an issue where NetworkPolicy could not handle external IP addresses. No negative impact on workloads.
    v1.11.2 registry-cn-hangzhou.ack.aliyuncs.com/acs/terway:v1.11.2 2024-10-15 Bug fix: Fixed an issue where NetworkPolicy could not handle external IP addresses. No negative impact on workloads.

    September 2024

    Version Image address Release date Description Impact
    v1.11.1 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.11.1 2024-09-23 Bug fix: Fixed an issue where max-available-ip was calculated incorrectly. No negative impact on workloads.
    v1.11.0 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.11.0 2024-09-13 Feature: Node pools can now be created in Terway ENI exclusive mode. Feature: Added an alert for inconsistent IP data. Improvement: Optimized NIC creation synchronization logic to reduce errors caused by NICs that are not ready. No negative impact on workloads.
    v1.9.7 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.9.7 2024-09-13 Feature: Added an alert for inconsistent IP data. Improvement: Optimized NIC creation synchronization logic to reduce errors caused by NICs that are not ready. No negative impact on workloads.
    v1.8.13 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.8.13 2024-09-13 Feature: Added an alert for inconsistent IP data. Improvement: Optimized NIC creation synchronization logic to reduce errors caused by NICs that are not ready. No negative impact on workloads.

    August 2024

    Version Image address Release date Description Impact
    v1.10.0 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.10.0 2024-08-29 Improvement: Terway 1.10.0 and later require Kubernetes 1.31 or later. No negative impact on workloads. Trunk ENI is enabled by default for newly created ACK managed clusters. After upgrading Terway in an ACK managed cluster to this version, terway-controlplane is installed by default.
    v1.8.12 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.8.12 2024-08-29 Bug fix: Fixed an issue where an ENI could not be created when a vSwitch had insufficient IP addresses. Improvement: Metadata access timeout errors are now recorded in logs instead of Kubernetes events. No negative impact on workloads.
    v1.8.11 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.8.11 2024-08-12 Bug fix: Fixed an issue where an ENI could not be created when a vSwitch had insufficient IP addresses. No negative impact on workloads.

    July 2024

    Version Image address Release date Description Impact
    v1.9.6 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.9.6 2024-07-25 Bug fix: Fixed an issue where an ENI could not be created when a vSwitch had insufficient IP addresses. Improvement: Reduced kube-apiserver load in DataPath V2 and IPVLAN modes. Improvement: Metadata access timeout errors are now recorded in logs instead of Kubernetes events. Feature: Managing IP resource usage on the Add-ons page in the ACK console is now supported. Feature: Added support for Shared Memory Communications over Remote Direct Memory Access (SMC-R) mode. For large clusters, kube-apiserver load may increase temporarily during the upgrade. Monitor kube-apiserver resource usage.

    June 2024

    Version Image address Release date Description Impact
    v1.9.4 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.9.4 2024-06-27 Feature: Added support for ACK NetworkPolicy. No negative impact on workloads.
    v1.8.9 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.8.9 2024-06-06 Bug fix: Fixed an issue where duplicate IP addresses were allocated. No negative impact on workloads.

    May 2024

    Version Image address Release date Description Impact
    v1.9.3 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.9.3 2024-05-29 Improvement: Optimized how the CNI plugin handles the No such file or directory exception. No negative impact on workloads.
    v1.9.2 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.9.2 2024-05-16 Improvement: Terway 1.9.2 and later require Kubernetes 1.30 or later. Bug fix: Fixed an issue where custom sysctl configurations were overwritten. Improvement: Reduced Device Plugin launch time. Feature: Network policies for newly created clusters are now implemented using eBPF (requires kernel 4.19 or later). CentOS and Alibaba Cloud Linux 2 are no longer supported as node pool operating systems. For more information, see \[Product changes\] EOL of Alibaba Cloud Linux 2 and CentOS 7. No negative impact on workloads.
    v1.8.8 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.8.8 2024-05-16 Bug fix: Fixed an issue where custom sysctl configurations were overwritten. Improvement: Reduced Device Plugin launch time. No negative impact on workloads.
    v1.8.6 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.8.6 2024-05-07 Bug fix: Fixed a bandwidth limit issue in DataPath V2 mode. Bug fix: Fixed an issue where outbound security group rules did not take effect in Trunk mode. Bug fix: Fixed an issue where a route from a node to a pod might not be deleted. No negative impact on workloads.

    April 2024

    Version Image address Release date Description Impact
    v1.8.4 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.8.4 2024-04-22 Bug fix: Fixed an issue where IP resource pools failed to be prefetched. Improvement: Improved the idempotence of NIC creation and IP address allocation operations to reduce resource leakage. Improvement: Adjusted the CNI configuration sequence to ensure pods are scheduled to a new node only after the CNI starts up successfully. No negative impact on workloads.
    v1.8.3 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.8.3 2024-04-10 Feature: Added support for Red Hat 9.3. Bug fix: Fixed an issue where the vSwitch selection policy did not take effect. Bug fix: Fixed an elastic Remote Direct Memory Access (eRDMA) quota calculation issue. Bug fix: Fixed an issue where the system was overly sensitive when detecting invalid resources. Bug fix: Fixed a Hubble data collection issue. Bug fix: Fixed a data forwarding issue in DataPath V2 mode. No negative impact on workloads.

    March 2024

    Version Image address Release date Description Impact
    v1.8.0 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.8.0 2024-03-18 Feature: Added support for DataPath V2. Feature: Added support for the alibaba-addon-secret of registered clusters. If you selected DataPathV2 or IPVLAN when creating the cluster, DataPath V2 is enabled.
    v1.7.4 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.7.4 2024-03-18 Bug fix: Fixed an issue where tokens might not be updated. No negative impact on workloads.
    v1.7.3 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.7.3 2024-03-11 Feature: Added support for Lingjun clusters. Bug fix: Fixed an eRDMA quota calculation issue. No negative impact on workloads.

    February 2024

    Version Image address Release date Description Impact
    v1.7.2 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.7.2 2024-02-28 Bug fix: Fixed an issue with slow IP address allocation. Bug fix: Fixed an issue where resource prefetching did not take effect. No negative impact on workloads.
    v1.7.0 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.7.0 2024-02-18 Feature: Added support for eRDMA. Improvement: Optimized ENI allocation efficiency. Improvement: Reduced kube-apiserver load in Terway IPVLAN mode. Improvement: Terway no longer supports elastic IP addresses (EIPs). Kubernetes 1.24 or later is required. EIPs are no longer supported by Terway. For more information, see Migrate EIPs from Terway to ack-extend-network-controller. For large clusters, kube-apiserver load may increase temporarily during the upgrade. Monitor kube-apiserver resource usage. For ACK dedicated clusters, a RAM role associated with the node is used for API authentication. Clusters created before March 1, 2020 may lack the vpc:DescribeVSwitches permission — see Grant RBAC permissions to a RAM user or RAM role to add it.

    January 2024

    Version Image address Release date Description Impact
    v1.6.3 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.6.3 2024-01-24 Bug fix: Fixed a node condition overwriting issue. Bug fix: Fixed an issue where node policies were not deleted in policy-based routing mode. Bug fix: Fixed an issue where IP addresses were not reclaimed for a long period after stateful applications were released. No negative impact on workloads.

    November 2023

    Version Image address Release date Description Impact
    v1.6.1 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.6.1 2023-11-21 Bug fix: Fixed an issue where the backend of a Service might not be updated in IPVLAN mode. Bug fix: Fixed an issue where duplicate IP addresses were allocated. No negative impact on workloads.
    v1.4.9 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.4.9 2023-11-21 Bug fix: Fixed an issue where duplicate IP addresses were allocated. No negative impact on workloads.

    October 2023

    Version Image address Release date Description Impact
    v1.6.0 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.6.0 2023-10-10 Feature: EIPs can now be migrated from Terway to ack-extend-network-controller. Feature: The Kind field can now be set to StatefulSet for the terway-controlplane component. No negative impact on workloads.

    August 2023

    Version Image address Release date Description Impact
    v1.5.7 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.5.7 2023-08-24 Improvement: Accelerated Terway startup. Bug fix: Fixed a health check timeout issue that occasionally occurred. No negative impact on workloads.

    July 2023

    Version Image address Release date Description Impact
    v1.5.6 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.5.6 2023-07-30 Feature: Custom CNI chains can now be configured. No negative impact on workloads.
    v1.5.5 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.5.5 2023-07-06 Feature: ENI filters can now be configured. No negative impact on workloads.

    June 2023

    Version Image address Release date Description Impact
    v1.5.4 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.5.4 2023-06-01 Bug fix: Fixed an issue where network jitters could occur during updates when Terway ran in IPVLAN mode. No negative impact on workloads.
    v1.4.8 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.4.8 2023-06-01 Bug fix: Fixed an issue where network jitters could occur during updates when Terway ran in IPVLAN mode. No negative impact on workloads.

    May 2023

    Version Image address Release date Description Impact
    v1.5.3 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.5.3 2023-05-16 Bug fix: Fixed an issue where accessing an external IP address failed when Terway 1.4.4 was used. No negative impact on workloads.
    v1.5.2 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.5.2 2023-05-10 Bug fix: Fixed an issue where nodes might enter the NotReady state when a Terway update failed. Bug fix: Fixed an issue where additional zone spread constraints were injected via webhooks in ENI Trunking mode. No negative impact on workloads.
    v1.4.6 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.4.6 2023-05-10 Bug fix: Fixed an issue where nodes might enter the NotReady state when a Terway update failed. No negative impact on workloads.

    April 2023

    Version Image address Release date Description Impact
    v1.5.1 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.5.1 2023-04-28 Feature: Added support for Kubernetes 1.26. Terway 1.5.1 and later support Kubernetes 1.22 and later. Improvement: Updated Felix to 3.24.5. No negative impact on workloads.

    March 2023

    Version Image address Release date Description Impact
    v1.4.5 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.4.5 2023-03-31 Improvement: Reduced RBAC permissions of Terway. No negative impact on workloads.
    v1.4.4 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.4.4 2023-03-14 Feature: vSwitch configurations can now be modified on the Add-ons page in the ACK console. Improvement: Reduced memory usage in IPVLAN mode. Improvement: Updated Cilium to 1.12.7. Improvement: Updated iptables to 1.8.8. In IPVLAN mode, if externalTrafficPolicy=Local is set on a LoadBalancer Service, the Service routes requests only to backend pods on the same node. To route to backend pods on other nodes, change the Service type to ClusterIP or set externalTrafficPolicy=Cluster.

    December 2022

    Version Image address Release date Description Impact
    v1.4.3 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.4.3 2022-12-23 Improvement: Updated Cilium to 1.12.4. Bug fix: Fixed an issue where an IP address could be allocated to multiple pods. Improvement: Changed the update policy to RollingUpdate. No negative impact on workloads.

    November 2022

    Version Image address Release date Description Impact
    v1.4.2 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.4.2 2022-11-21 Bug fix: Fixed a compatibility issue between Terway and localdns when ENI Trunking was enabled. Bug fix: Fixed a compatibility issue between NetworkPolicies and PostStart hooks when IPVLAN mode was disabled. No negative impact on workloads.

    September 2022

    Version Image address Release date Description Impact
    v1.4.1 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.4.1 2022-09-28 Feature: Terway-eniip component parameters can now be configured on the Add-ons page in the ACK console. Bug fix: Fixed an issue where hairpin access failed. Bug fix: Fixed an issue where IP addresses failed to be allocated when the container runtime invoked the CNI plugin in an unexpected order. No negative impact on workloads.

    August 2022

    Version Image address Release date Description Impact
    v1.4.0 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.4.0 2022-08-29 Improvement: Updated Cilium to 1.12.1. Improvement: Kubernetes 1.20 or later is now required. For clusters with IPVLAN mode enabled, Cilium-related CRDs are automatically updated during cluster upgrades. For large clusters, this may temporarily increase kube-apiserver load. Monitor kube-apiserver resource usage. No negative impact on workloads.

    July 2022

    Version Image address Release date Description Impact
    v1.3.0 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.3.0 2022-07-22 Feature: QoS management for pods is now supported. No negative impact on workloads.

    June 2022

    Version Image address Release date Description Impact
    v1.2.4 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.2.4 2022-06-28 Bug fix: Fixed an issue where the portmap plugin did not take effect. Bug fix: Fixed an issue where EIPs could not be deleted. Bug fix: Fixed an issue where traffic from Services to backend pods could not be balanced in IPVLAN mode. No negative impact on workloads.

    May 2022

    Version Image address Release date Description Impact
    v1.2.3 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.2.3 2022-05-26 Feature: Added support for EIP bandwidth plans and BGP (Multi-ISP) Pro EIPs. Bug fix: Fixed an issue where containers failed to pass kubelet health checks when Cilium network policies were in use. No negative impact on workloads.

    March 2022

    Version Image address Release date Description Impact
    v1.2.2 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.2.2 2022-03-31 Bug fix: Fixed an ARP probe issue in VLAN mode. No negative impact on workloads.
    v1.2.1 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.2.1 2022-03-15 Bug fix: Fixed an issue where calico-felix switched to legacy iptables mode on Alibaba Cloud Linux 3. Bug fix: Fixed an issue where IP addresses could not be revoked when metadata errors occurred. No negative impact on workloads.

    January 2022

    Version Image address Release date Description Impact
    v1.2.0 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.2.0 2022-01-11 Improvement: Improved file locking efficiency during CNI execution. Feature: A Service can now be accessed via its backend pods in IPVLAN mode. Feature: In IPVLAN mode, accessing an external IP address or a Server Load Balancer (SLB) instance from within the cluster now routes traffic to the backend Service. This is enabled automatically for new clusters. To enable it for existing IPVLAN clusters, see How do I enable in-cluster load balancing for ExternalIP and LoadBalancer Services in an existing Terway IPvlan cluster? Bug fix: Fixed an issue that caused false positive alerts in Terway VPC mode. Improvement: Improved calico-felix performance. No negative impact on workloads.

    December 2021

    Version Image address Release date Description Impact
    v1.1.1 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.1.1 2021-12-20 Improvement: Optimized ENI reclamation to address an issue where IPVLANs could not be created due to netns leaks in containerd environments. Feature: An ENI can now be associated with multiple security groups. For more information, see Associate multiple security groups with an ENI. No negative impact on workloads.

    November 2021

    Version Image address Release date Description Impact
    v1.1.0 registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.1.0 2021-11-22 Feature: Added support for IPv4/IPv6 dual stack. Improvement: Updated Felix to V3.20.2. Improvement: Updated CNI from V0.3.0 to V0.3.1. Improvement: Terway is now compatible with Kubernetes 1.22. Terway 1.1.0 and later support Kubernetes 1.18 and later. Bug fix: Fixed an issue where ENI configuration errors occasionally occurred in IPVLAN mode (see #261). Improvement: Added 100 MiB memory for the Policy container. If Typha is deployed in your cluster to improve network policy performance, update Terway to this version. For more information, see Optimize the scalability of NetworkPolicy in large-scale Terway clusters. If Typha is not deployed, workloads are not affected. If IPVLAN mode is not enabled, calico-felix-related CRDs are updated during the cluster upgrade, which may temporarily increase kube-apiserver load for large clusters. Monitor kube-apiserver resource usage. Make sure the node has enough memory to prevent pods from being evicted during the upgrade.

    September 2021

    Version Image address Release date Description Impact
    v1.0.10.443-gaa1bfcc-aliyun registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.0.10.443-gaa1bfcc-aliyun 2021-09-14 Improvement: Reduced network latency. This update applies only to Terway exclusive ENI mode. No update is needed for other modes. No negative impact on workloads.

    August 2021

    Version Image address Release date Description Impact
    v1.0.10.398-g63d2e57-aliyun registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.0.10.398-g63d2e57-aliyun 2021-08-04 Bug fix: Fixed an issue where network policies occasionally failed to take effect in inclusive ENI mode. Improvement: Updated Cilium to 1.10. For clusters with IPVLAN mode enabled, Cilium-related CRDs are automatically updated during cluster upgrades. For large clusters, this may temporarily increase kube-apiserver load. Monitor kube-apiserver resource usage. No negative impact on workloads.

    July 2021

    Version Image address Release date Description Impact
    v1.0.10.390-g5f3c461-aliyun registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.0.10.390-g5f3c461-aliyun 2021-07-02 Bug fix: Fixed an issue where pod annotations could not be modified when EIPs were used in Terway mode. Bug fix: Fixed an issue where Terway could not start when a dedicated ENI was assigned to each pod. Improvement: The network namespace path is now automatically adjusted in containerd containers. Feature: Added support for Alibaba Cloud Linux 3. No negative impact on workloads.

    May 2021

    Version Image address Release date Description Impact
    v1.0.10.368-g2890967-aliyun registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.0.10.368-g2890967-aliyun 2021-05-24 Bug fix: Fixed an issue where a ResourceInvalid alert occurred when EIPs were used. Feature: In IPVLAN mode, pod-to-node communication is now supported. Traffic stays within the node and does not route over VPC. Improvement: The ip forwarding setting can now be proactively checked and corrected. No negative impact on workloads.

    April 2021

    Version Image address Release date Description Impact
    v1.0.10.333-gfd2b7b8-aliyun registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.0.10.333-gfd2b7b8-aliyun 2021-04-26 Bug fix: Fixed IP address conflicts that occurred when stateful applications used EIPs. Feature: Hubble can now be enabled in IPVLAN mode. For more information, see What is Hubble. No negative impact on workloads.

    March 2021

    Version Image address Release date Description Impact
    v1.0.10.323-g778c128-aliyun registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.0.10.323-g778c128-aliyun 2021-03-22 Improvement: Reduced API calls per minute to prevent API abuse. Improvement: Optimized event alerts for security group configuration inspections. No negative impact on workloads.

    February 2021

    Version Image address Release date Description Impact
    v1.0.10.317-g0652857-aliyun registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.0.10.317-g0652857-aliyun 2021-02-22 Bug fix: Fixed CiliumIdentity leaks. Bug fix: Fixed an occasional issue in StatefulSet pod IP management. No negative impact on workloads.
    v1.0.10.309-g5314eee-aliyun registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.0.10.309-g5314eee-aliyun 2021-02-05 Improvement: Security group rule configuration errors are no longer automatically fixed. The system now generates alerts only when errors are detected, and you can follow the suggestions to fix them. Bug fix: Fixed an issue where pod IP addresses could be reclaimed and reassigned when nodes were overloaded. No negative impact on workloads.

    January 2021

    Version Image address Release date Description Impact
    v1.0.10.301-g0115576-aliyun registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.0.10.301-g0115576-aliyun 2021-01-21 Feature: Added support for custom maximum transmission units (MTUs). Feature: Added support for routing based on the host network stack in exclusive ENI mode. Bug fix: Fixed packet loss caused by the Terway traffic limit feature. Bug fix: Fixed residual IP policies. Bug fix: Fixed incorrect counting of IP addresses provided by ENIs. No negative impact on workloads.

    December 2020

    Version Image address Release date Description Impact
    v1.0.10.280-gdc2cb6c-aliyun registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.0.10.280-gdc2cb6c-aliyun 2020-12-25 Feature: Added proactive checks for Terway, covering: ENIs and secondary IP addresses; security group consistency; pod network configurations; host network configurations. Feature: Added support for routing based on the host network stack in IPVLAN mode. No negative impact on workloads.
    v1.0.10.263-gdbe50a9-aliyun registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.0.10.263-gdbe50a9-aliyun 2020-12-03 Bug fix: Fixed a Terway error in exclusive ENI mode. No negative impact on workloads.

    November 2020

    Version Image address Release date Description Impact
    v1.0.10.261-g8342155-aliyun registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.0.10.261-g8342155-aliyun 2020-11-27 Feature: Added support for synchronous calls to the ECS API. Bug fix: Fixed an issue where error messages were returned when using the CNI plugin. No negative impact on workloads.
    v1.0.10.250-gb7bb10a-aliyun registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.0.10.250-gb7bb10a-aliyun 2020-11-23 Bug fix: Fixed a pod networking issue that occurred when the ENI driver failed to load. Bug fix: Fixed a status issue with IP addresses allocated by ENIs when the ENI API was throttled. No negative impact on workloads.

    October 2020

    Version Image address Release date Description Impact
    v1.0.10.247-g4cb77d0-aliyun registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.0.10.247-g4cb77d0-aliyun 2020-10-26 Feature: Added support for ECS instances deployed on dedicated hosts. No negative impact on workloads.

    September 2020

    Version Image address Release date Description Impact
    v1.0.10.237-g6a0f948-aliyun registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.0.10.237-g6a0f948-aliyun 2020-09-16 Improvement: Reduced the time required to bind ENIs to pods. No negative impact on workloads.

    August 2020

    Version Image address Release date Description Impact
    v1.0.10.221-g8d6386a-aliyun registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.0.10.221-g8d6386a-aliyun 2020-08-11 Feature: Added support for IPVLAN and eBPF for network virtualization. No negative impact on workloads.
    v1.0.10.213-g27145cc-aliyun registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.0.10.213-g27145cc-aliyun 2020-08-04 Bug fix: Fixed a pod networking issue caused by occasional ENI failures. No negative impact on workloads.

    July 2020

    Version Image address Release date Description Impact
    v1.0.10.208-gf3144bf-aliyun registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.0.10.208-gf3144bf-aliyun 2020-07-20 Bug fix: Fixed an issue where policy-based routes for nodes in inclusive ENI mode were exposed. Feature: Added support for API calls over internal networks. Bug fix: Fixed an issue where pod IP addresses could not be released when the vSwitch IP address limit was reached. Improvement: Optimized the CNI error report page. No negative impact on workloads.
    v1.0.10.211-gef088a4-aliyun registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.0.10.211-gef088a4-aliyun 2020-07-24 Feature: Cluster ID tags can now be added to ENIs. No negative impact on workloads.

    April 2020

    Version Image address Release date Description Impact
    v1.0.10.156-g8660a0f-aliyun registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.0.10.156-g8660a0f-aliyun 2020-04-22 Improvement: Improved caching efficiency when ENIs are used. Improvement: Updated the pre-installed Felix to V3.5.8. Feature: Added support for reclaiming network resources from pods in the Completed or Failed state. No negative impact on workloads.

    February 2020

    Version Image address Release date Description Impact
    v1.0.10.139-g14a4f84-aliyun registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.0.10.139-g14a4f84-aliyun 2020-02-12 Bug fix: Fixed an issue where pod creation requests occasionally timed out. No negative impact on workloads.

    January 2020

    Version Image address Release date Description Impact
    v1.0.10.133-g001396b-aliyun registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.0.10.133-g001396b-aliyun 2020-01-10 Feature: The NetworkPolicy feature can now be disabled. Feature: Added support for IPVLAN for network virtualization in inclusive ENI mode. No negative impact on workloads.

    December 2019

    Version Image address Release date Description Impact
    v1.0.10.122-gd0be015-aliyun registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.0.10.122-gd0be015-aliyun 2019-12-24 Improvement: Optimized IP address allocation efficiency in inclusive ENI mode. No negative impact on workloads.

    October 2019

    Version Image address Release date Description Impact
    v1.0.10.100-g92a3fa5-aliyun registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.0.10.100-g92a3fa5-aliyun 2019-10-11 Bug fix: Fixed an issue where the host node entered the NotReady state when a large number of jobs concurrently requested resources. No negative impact on workloads.

    August 2019

    Version Image address Release date Description Impact
    v1.0.9.20-g35ae000-aliyun registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.0.9.20-g35ae000-aliyun 2019-08-23 Feature: Added support for Kubernetes 1.14.6. No negative impact on workloads.

    April 2019

    Version Image address Release date Description Impact
    v1.0.9.15-g3957085-aliyun registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.0.9.15-g3957085-aliyun 2019-04-11 Bug fix: Fixed an issue where the Terway update occasionally failed. No negative impact on workloads.

    March 2019

    Version Image address Release date Description Impact
    v1.0.9.14-ga0346bb-aliyun registry.cn-hangzhou.aliyuncs.com/acs/terway:v1.0.9.14-ga0346bb-aliyun 2019-03-28 Bug fix: Fixed an issue where Terway failed to get ENI information when the metadata server was throttled. Bug fix: Fixed an issue where the failed to move veth to host netns: file exists error occurred when creating a container. Feature: Added periodic scanning to check ENI status and reclaim abnormally released ENIs. Feature: Added support for health checks using TCP port checks instead of HTTP path checks. No negative impact on workloads.

    Related topics