Red Hat OpenShift Container Engine is a new product offering from Red Hat that lets you use OpenShift Container Platform as a production platform for launching containers. You download and install OpenShift Container Engine in the same way as OpenShift Container Platform, but OpenShift Container Engine offers a subset of the features that OpenShift Container Platform does.
Specifically, the similarities and difference between Red Hat OpenShift Container Engine and OpenShift Container Platform are the following:
Engine | Platform | ||
---|---|---|---|
Core Kubernetes and container orchestration |
X |
X |
|
Enterprise Ready Configurations |
X |
X |
|
Standard Infrastructure Services |
X |
X |
|
Core User Experience |
X |
X |
|
Maintained and Curated Content |
X |
X |
|
OpenShift Container Storage Compatible |
X |
X |
|
Red Hat Middleware Compatible |
X |
X |
|
Cloud Functions Compatible |
X |
X |
|
Quay Integration Compatible |
X |
X |
|
CNV VM Virtualization Compatible |
X |
X |
|
Advanced cluster management |
X |
||
Advanced Networking |
X |
||
Developer Experience |
X |
We will now offer a deeper explanation of the categories in order to more fully explain the feature entitlement of OpenShift Container Engine.
OpenShift Container Engine offers full access to an enterprise ready Kubernetes. You will receive a packaged, easy to install Kubernetes that has undergone an extensive compatibility test matrix with many of the software elements you will find in your datacenter. Engine offers the same service level agreements, bug fixes, and CVE protection as OpenShift Container Platform. Engine includes a Red Hat Enterprise Linux Virtual Datacenter and Red Hat CoreOS entitlement that allows you to use an integrated Linux operating system with container runtime all from the same provider. OpenShift Container Engine is compatible with Windows Containers from Microsoft.
OpenShift Container Engine comes with the same security options and default settings as the OpenShift Container Platform. Default security context constraints, pod security policies, best practice network and storage settings, service account configuration, SELinux integration, haproxy edge routing configuration, and all other out of the box protections OpenShift Container Platform offers are available in OpenShift Container Engine. Engine offers full access to our integrated monitoring solution, based on Prometheus, that offer deep coverage and alerting of common Kubernetes’ issues. Red Hat entitles OpenShift Container Engine to the same installation and upgrade automations as OpenShift Container Platform.
With an OpenShift Container Engine Subscription users receive support for all storage plugins found in OpenShift Container Platform. In terms of networking, OpenShift Container Engine offers full and supported access to the Kubernetes Container Network Interface (CNI) and therefore allows you to leverage any 3rd party SDN that supports OpenShift Container Platform. It also allows for the use of the included OVS to establish a flat, non-project (Kubernetes namespace) segmented network for the Kubernetes cluster. Engine allows customers to use Kubernetes Network Policy to create microsegmentation between deployed application services on the cluster. OpenShift Container Engine also grants full use of the route API object found in OpenShift including its sophisticated integration with the haproxy edge routing layer. Core User Experience A user of the OpenShift Container Engine will be most interested in experiencing a native Kubernetes experience. They have full access to Kubernetes Operators, pod deployment strategies, Helm, and OpenShift templates. Engine users will leverage the oc and kubectl command lines. Engine also offers an administrator web based console that shows all aspects of their deployed container services and is more in line with a container as a service experience. OpenShift Container Engine grants access to the Operator Life Cycle Manager that helps cluster administrators and users control access to content on the cluster as well as life cycle operator enabled services that might be in use. With an Engine Subscription users receive access to both the Kubernetes namespace and the OpenShift Project API object that layers on top as well as both cluster level and tenant level Prometheus monitoring metrics and events.
If you purchase an OpenShift Container Engine Subscription you receive access to the OpenShift Container Platform entitled content from the Red Hat Container Catalog and Red Hat Connect ISV marketplace. With an Engine Subscription you receive access to all maintained and curated content that the OpenShift eco-system offers either for free, such as the Red Hat Software Collections, or through additional purchases. The Kubernetes service broker, service catalog, and all OpenShift Container Platform service broker offerings are supported with an OpenShift Container Platform Engine Subscription.
OpenShift Container Engine is compatible and supported with OpenShift Container Storage should users want to buy this Red Hat product addon.
OpenShift Container Engine is compatible and supported with Red Hat Middleware product solutions should users want to buy these Red Hat product addons.
OpenShift Container Engine is compatible and supported with future Red Hat Cloud Functions deliverables should users want to experience function based or serverless container services.
OpenShift Container Engine is compatible and supported with Red Hat Quay should users want to buy this Red Hat product solution. CNV VM Virtualization Compatible OpenShift Container Engine is compatible and supported with Red Hat product offerings derived from the kubevirt.io open source project should users want to buy such solutions.
OpenShift Container Engine can be used in multi-cluster deployment configuration to the same extent OpenShift Container Platform. Consolidated views of clusters and the use of Kubernetes technologies to offer an agnostic layer across public and on premises clouds is allowed with Engine.
A OpenShift Container Engine Subscription does not come with support for cluster wide log aggregation solution or for ElasticSearch, Fluentd, Kibana based logging solution. Similarly the chargeback features found in OpenShift Container Platform and Red Hat Service Mesh capabilities derived from the open source Istio.io and kiali.io project that offers OpenTracing observability for containerized services on the platform are not supported.
The networking solutions that come out of the box with OpenShift Container Platform are not supported with an OCPE subscription . OpenShift’s Kubernetes CNI plugin for automation of multi-tenant network segmentation between OpenShift projects is not entitled for use with Engine. OpenShift Container Platform offers more granular control of source IPaddress used by application services on the cluster. Those egress IPaddress controls are not entitled for use with Engine. OpenShift Container Platform offers ingress routing to on cluster services that use non-standard ports when no public cloud provider is in use via the VIP pods found in the OpenShift product. That ingress solution is not supported in Engine. Engine users are supported for the Kubernetes ingress control object which offers integrations with public cloud providers to solve this use case. Red Hat Service Mesh that is derived from the istio.io open source project is not supported in the OpenShift Container Engine offering.
With an OpenShift Container Engine the following capabilities are not supported: developer experience utilities and tools, OpenShift’s pipeline feature that integrates a streamlined, Kubernetes enabled Jenkins experience in the user’s project space, the OpenShift Container Platform’s source to image feature that allows end users to easily deploy source code, dockerfiles, or container images across the cluster in a manner that automates the segmentation between gold standard container images and line of business code additions, while automating and ability for the cluster to autonomously update the deployed application should either layer change, build strategies, builder pods, or imagestreams for end user container deployments, or the odo developer command line or the developer persona in the OpenShift web console.
The following table is a summary of the above explanations to help provide a more clarity around what features are supported for use in OpenShift Container Engine.
Engine | Platform | ||
---|---|---|---|
Core Kubernetes and container orchestration |
X |
X |
|
Enterprise-class Kubernetes |
X |
X |
|
Red Hat Enterprise Linux for Virtual Datacenters and Red Hat CoreOS |
X |
X |
|
Windows containers compatible |
X |
X |
|
Enterprise-ready configurations |
X |
X |
|
Complete life-cycle automation of platform |
X |
X |
|
Management, monitoring, alerting, and remedy through Prometheus |
X |
X |
|
Enterprise-ready security |
X |
X |
|
Standard infrastructure services |
X |
X |
|
Edge routing |
X |
X |
|
Flat networking |
X |
X |
|
Kubernetes storage plug-ins |
X |
X |
|
Core user experience |
X |
X |
|
Application deployments, deployment configuration, templates, and Operators |
X |
X |
|
Administrator console |
X |
X |
|
Operator life cycle management |
X |
X |
|
kubectl command line |
X |
X |
|
Developer projects |
X |
X |
|
Prometheus metrics |
X |
X |
|
Maintained and curated content |
X |
X |
|
Red Hat Container Catalog access |
X |
X |
|
Independent Software Vendor and partner Operator access |
X |
X |
|
Service Catalog and Brokers for cloud content |
X |
X |
|
Red Hat add-ons |
X |
||
OpenShift Container Storage access |
X |
X |
|
Red Hat Middleware access |
X |
X |
|
Serverless cloud functions |
X |
X |
|
Istio runtime launchers |
X |
||
Quay integration |
X |
X |
|
Container Native Virtualization for virtual machines |
X |
X |
|
Advanced cluster management |
X |
||
Logging |
X |
||
Chargeback |
X |
||
Kiali (Jaeger and OpenTracing) |
X |
||
Advanced networking |
X |
||
Egress per pod or namespace |
X |
||
Ingress for non-standard ports |
X |
||
Multi-tenant SDN |
X |
||
Red Hat Service Mesh (Istio) |
X |
||
Developer experience |
X |
||
Integrated CI/CD pipelines |
X |
||
Source-to-Image Container factory |
X |
||
odo command line |
X |
||
Developer console |
X |
OpenShift Container Engine is a subscription offering that provides OpenShift Container Platform but with a limited set of supported features at a lower list price. OpenShift Container Engine and OpenShift Container Platform are the same product and therefore all software and features are delivered in both. There is only one download, OpenShift Container Platform. Engine uses the OpenShift Container Platform documentation and support services and bug errata for this reason. If you purchase the OpenShift Container Platform Engine Subscription you need to understand that support for all the features are limited as set forth above.