Networking and IPAM

Butler manages IP address allocation for on-prem tenant clusters. Cloud provider clusters skip IPAM entirely because the cloud handles networking.

Two Networking Modes

IPAM Mode (On-Prem)

For Harvester, Nutanix, and Proxmox deployments, Butler allocates contiguous IP ranges from administrator-defined pools. Each tenant cluster receives:

• Node IPs -- Addresses for worker VMs.
• LoadBalancer IPs -- Addresses for MetalLB to assign to Services of type LoadBalancer.

Butler configures MetalLB on each tenant cluster with the allocated LoadBalancer range.

Cloud Mode

For AWS, GCP, and Azure deployments, Butler delegates networking to the cloud provider. VMs get IPs from VPC subnets. LoadBalancer Services use cloud load balancers. No NetworkPool or IPAllocation resources are needed.

Set the mode in ProviderConfig.spec.network.mode (ipam or cloud).

NetworkPool

Platform admins define IP address pools as NetworkPool resources:

apiVersion: butler.butlerlabs.dev/v1alpha1
kind: NetworkPool
metadata:
  name: lab-pool
  namespace: butler-system
spec:
  cidr: "10.40.0.0/21"
  reserved:
    - cidr: "10.40.0.0/28"
      description: "Management cluster"
  tenantAllocation:
    start: "10.40.1.0"
    end: "10.40.7.254"
    defaults:
      nodesPerTenant: 5
      lbPoolPerTenant: 8

The pool defines the total allocatable range, reserved ranges (management cluster, infrastructure), and default allocation sizes per tenant.

IPAllocation

Butler creates IPAllocation resources automatically when provisioning a tenant cluster. Each allocation records the assigned IP range, the source pool, and the tenant cluster reference.

Allocations follow a lifecycle: Pending -> Allocated -> Released. Released allocations are retained for audit before garbage collection.

Elastic Scaling

Butler supports two load balancer allocation modes:

• Static -- Allocate a fixed pool of IPs at cluster creation. The allocation size does not change for the lifetime of the cluster.
• Elastic -- Start with a small pool and grow or shrink based on observed demand. Growth fires when a tenant LB Service is stuck Pending without an IP. Shrink releases growth allocations whose IPs have no matching Service for a sustained grace period (10 minutes).

Configure the mode in ProviderConfig.spec.network.loadBalancer.allocationMode.

Pool Capacity

NetworkPool resources expose three capacity conditions: CapacityWarning (70% utilization), CapacityCritical (85%), and CapacityExhausted (95%). These conditions are always present on every NetworkPool and are queryable via kubectl, ArgoCD health checks, or any tool that reads standard Kubernetes conditions.

See Also

• Architecture > IPAM Internals -- Bitmap allocator, garbage collection, and elastic scaling algorithm
• NetworkPool Reference -- Full NetworkPool specification
• IPAllocation Reference -- Full IPAllocation specification
• ProviderConfig Reference -- Network configuration fields