richard
/
kubespray
mirror of https://github.com/kubernetes-sigs/kubespray.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
5938 Commits
34 Branches
82 Tags
155 MiB
Tree: 0ac364dfae
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '0ac364dfae'
${ noResults }
kubespray/roles/network_plugin/cilium/defaults/main.yml

81 lines
2.5 KiB
Raw Normal View History

Added cilium support (#2236) * Added cilium support * Fix typo in debian test config * Remove empty lines * Changed cilium version from <latest> to <v1.0.0-rc3> * Add missing changes for cilium * Add cilium to CI pipeline * Fix wrong file name * Check kernel version for cilium * fixed ci error * fixed cilium-ds.j2 template * added waiting for cilium pods to run * Fixed missing EOF * Fixed trailing spaces * Fixed trailing spaces * Fixed trailing spaces * Fixed too many blank lines * Updated tolerations,annotations in cilium DS template * Set cilium_version to iptables-1.9 to see if bug is fixed in CI * Update cilium image tag to v1.0.0-rc4 * Update Cilium test case CI vars filenames * Add optional prometheus flag, adjust initial readiness delay * Update README.md with cilium info
7 years ago
Upgrade Cilium network plugin to v1.5.5. (#5014) * Needs an additional cilium-operator deployment. * Added option to enable hostPort mappings.
5 years ago
Cilium: overwrite auto-detected MTU of underlying network (#6329)
4 years ago
Upgrade Cilium network plugin to v1.5.5. (#5014) * Needs an additional cilium-operator deployment. * Added option to enable hostPort mappings.
5 years ago
Added cilium support (#2236) * Added cilium support * Fix typo in debian test config * Remove empty lines * Changed cilium version from <latest> to <v1.0.0-rc3> * Add missing changes for cilium * Add cilium to CI pipeline * Fix wrong file name * Check kernel version for cilium * fixed ci error * fixed cilium-ds.j2 template * added waiting for cilium pods to run * Fixed missing EOF * Fixed trailing spaces * Fixed trailing spaces * Fixed trailing spaces * Fixed too many blank lines * Updated tolerations,annotations in cilium DS template * Set cilium_version to iptables-1.9 to see if bug is fixed in CI * Update cilium image tag to v1.0.0-rc4 * Update Cilium test case CI vars filenames * Add optional prometheus flag, adjust initial readiness delay * Update README.md with cilium info
7 years ago
Use K8s 1.14 and add kubeadm experimental control plane mode (#4514) * Use K8s 1.14 and add kubeadm experimental control plane mode This reverts commit d39c273d96afe610fed03a2558ffc1beec64c114. * Cleanup kubeadm setup run on first master * pin kubeadm_certificate_key in test * Remove kubelet autolabel of kube-node, add symlink for pki dir Change-Id: Id5e74dd667c60675dbfe4193b0bc9fb44380e1ca
5 years ago
Added cilium support (#2236) * Added cilium support * Fix typo in debian test config * Remove empty lines * Changed cilium version from <latest> to <v1.0.0-rc3> * Add missing changes for cilium * Add cilium to CI pipeline * Fix wrong file name * Check kernel version for cilium * fixed ci error * fixed cilium-ds.j2 template * added waiting for cilium pods to run * Fixed missing EOF * Fixed trailing spaces * Fixed trailing spaces * Fixed trailing spaces * Fixed too many blank lines * Updated tolerations,annotations in cilium DS template * Set cilium_version to iptables-1.9 to see if bug is fixed in CI * Update cilium image tag to v1.0.0-rc4 * Update Cilium test case CI vars filenames * Add optional prometheus flag, adjust initial readiness delay * Update README.md with cilium info
7 years ago
cilium v1.1.2 Update all configs to current upstream state. Add more resources (unable to pass tests now)...
6 years ago
Added cilium support (#2236) * Added cilium support * Fix typo in debian test config * Remove empty lines * Changed cilium version from <latest> to <v1.0.0-rc3> * Add missing changes for cilium * Add cilium to CI pipeline * Fix wrong file name * Check kernel version for cilium * fixed ci error * fixed cilium-ds.j2 template * added waiting for cilium pods to run * Fixed missing EOF * Fixed trailing spaces * Fixed trailing spaces * Fixed trailing spaces * Fixed too many blank lines * Updated tolerations,annotations in cilium DS template * Set cilium_version to iptables-1.9 to see if bug is fixed in CI * Update cilium image tag to v1.0.0-rc4 * Update Cilium test case CI vars filenames * Add optional prometheus flag, adjust initial readiness delay * Update README.md with cilium info
7 years ago
cilium v1.1.2 Update all configs to current upstream state. Add more resources (unable to pass tests now)...
6 years ago
Added cilium support (#2236) * Added cilium support * Fix typo in debian test config * Remove empty lines * Changed cilium version from <latest> to <v1.0.0-rc3> * Add missing changes for cilium * Add cilium to CI pipeline * Fix wrong file name * Check kernel version for cilium * fixed ci error * fixed cilium-ds.j2 template * added waiting for cilium pods to run * Fixed missing EOF * Fixed trailing spaces * Fixed trailing spaces * Fixed trailing spaces * Fixed too many blank lines * Updated tolerations,annotations in cilium DS template * Set cilium_version to iptables-1.9 to see if bug is fixed in CI * Update cilium image tag to v1.0.0-rc4 * Update Cilium test case CI vars filenames * Add optional prometheus flag, adjust initial readiness delay * Update README.md with cilium info
7 years ago
Add cilium_tunnel_mode variable to the cilium config (#5295)
5 years ago
Added cilium support (#2236) * Added cilium support * Fix typo in debian test config * Remove empty lines * Changed cilium version from <latest> to <v1.0.0-rc3> * Add missing changes for cilium * Add cilium to CI pipeline * Fix wrong file name * Check kernel version for cilium * fixed ci error * fixed cilium-ds.j2 template * added waiting for cilium pods to run * Fixed missing EOF * Fixed trailing spaces * Fixed trailing spaces * Fixed trailing spaces * Fixed too many blank lines * Updated tolerations,annotations in cilium DS template * Set cilium_version to iptables-1.9 to see if bug is fixed in CI * Update cilium image tag to v1.0.0-rc4 * Update Cilium test case CI vars filenames * Add optional prometheus flag, adjust initial readiness delay * Update README.md with cilium info
7 years ago
Upgrade Cilium network plugin to v1.5.5. (#5014) * Needs an additional cilium-operator deployment. * Added option to enable hostPort mappings.
5 years ago
Cilium updates (#5438) * Add resources needed to deploy 1.6.4 * Use cilium v1.6.4 * Change deprecated option name * Add update crd to clusterrole cilium * Cilium 1.6.4 -> 1.6.5 * Make monitor-aggregation config configurable as a variable * Change monitor-aggregation default none->medium * Cilium 1.6.5 -> 1.6.6 * Update to 1.7.0 * v1.7.0->v1.7.1
5 years ago
Adding kube-proxy-replacement support in cilium (#6334) Signed-off-by: Arthur Outhenin-Chalandre <arthur@cri.epita.fr>
4 years ago
Upgrade Cilium network plugin to v1.5.5. (#5014) * Needs an additional cilium-operator deployment. * Added option to enable hostPort mappings.
5 years ago
Add a way to deploy cilium alongside another CNI (#6373) Signed-off-by: Arthur Outhenin-Chalandre <arthur@cri.epita.fr>
4 years ago
Add new cilium options for native routing (#6519) Signed-off-by: Arthur Outhenin-Chalandre <arthur@cri.epita.fr>
4 years ago
Add support for cilium ipsec (#7342) * Add support for cilium ipsec * Fix typo for bpffs
4 years ago
Add cilium_ipam_mode variable (#7418) Starting with Cilium v1.9 the default ipam mode has changed to "Cluster Scope". See: https://docs.cilium.io/en/v1.9/concepts/networking/ipam/ With this ipam mode Cilium handles assigning subnets to nodes to use for pod ip addresses. The default Kubespray deploy uses the Kube Controller Manager for this (the --allocate-node-cidrs kube-controller-manager flag is set). This makes the proper ipam mode for kubespray using cilium v1.9+ "kubernetes". Tested with Cilium 1.9.5. This PR also mounts the cilium-config ConfigMap for this variable to be read properly. In the future we can probably remove the kvstore and kvstore-opt Cilium Operator args since they can be in the ConfigMap. I will tackle that after this merges.
3 years ago
Upgrade cilium role (#7521) * Upgrade cilium roles * Del old test result * Add hubble ui examples * Refactor hubble metrics * Markdown fix pipeline errors * yamllint check and fix * refactor install from https://github.com/kubernetes-sigs/kubespray/pull/7520 * Docs syntax change (fix) * Cilium set default 1.8.9 * Update cilium version in Readme
3 years ago
Add cilium_ipam_mode variable (#7418) Starting with Cilium v1.9 the default ipam mode has changed to "Cluster Scope". See: https://docs.cilium.io/en/v1.9/concepts/networking/ipam/ With this ipam mode Cilium handles assigning subnets to nodes to use for pod ip addresses. The default Kubespray deploy uses the Kube Controller Manager for this (the --allocate-node-cidrs kube-controller-manager flag is set). This makes the proper ipam mode for kubespray using cilium v1.9+ "kubernetes". Tested with Cilium 1.9.5. This PR also mounts the cilium-config ConfigMap for this variable to be read properly. In the future we can probably remove the kvstore and kvstore-opt Cilium Operator args since they can be in the ConfigMap. I will tackle that after this merges.
3 years ago
Upgrade cilium role (#7521) * Upgrade cilium roles * Del old test result * Add hubble ui examples * Refactor hubble metrics * Markdown fix pipeline errors * yamllint check and fix * refactor install from https://github.com/kubernetes-sigs/kubespray/pull/7520 * Docs syntax change (fix) * Cilium set default 1.8.9 * Update cilium version in Readme
3 years ago
  1. ---
  2. # Log-level
  3. cilium_debug: false
  5. cilium_mtu: ""
  6. cilium_enable_ipv4: true
  7. cilium_enable_ipv6: false
  9. # Etcd SSL dirs
  10. cilium_cert_dir: /etc/cilium/certs
  11. kube_etcd_cacert_file: ca.pem
  12. kube_etcd_cert_file: node-{{ inventory_hostname }}.pem
  13. kube_etcd_key_file: node-{{ inventory_hostname }}-key.pem
  15. # Limits for apps
  16. cilium_memory_limit: 500M
  17. cilium_cpu_limit: 500m
  18. cilium_memory_requests: 64M
  19. cilium_cpu_requests: 100m
  21. # Overlay Network Mode
  22. cilium_tunnel_mode: vxlan
  23. # Optional features
  24. cilium_enable_prometheus: false
  25. # Enable if you want to make use of hostPort mappings
  26. cilium_enable_portmap: false
  27. # Monitor aggregation level (none/low/medium/maximum)
  28. cilium_monitor_aggregation: medium
  29. # Kube Proxy Replacement mode (strict/probe/partial)
  30. cilium_kube_proxy_replacement: probe
  32. # If upgrading from Cilium < 1.5, you may want to override some of these options
  33. # to prevent service disruptions. See also:
  34. # http://docs.cilium.io/en/stable/install/upgrade/#changes-that-may-require-action
  35. cilium_preallocate_bpf_maps: false
  36. cilium_tofqdns_enable_poller: false
  37. cilium_enable_legacy_services: false
  39. # Deploy cilium even if kube_network_plugin is not cilium.
  40. # This enables to deploy cilium alongside another CNI to replace kube-proxy.
  41. cilium_deploy_additionally: false
  43. # Auto direct nodes routes can be used to advertise pods routes in your cluster
  44. # without any tunelling (with `cilium_tunnel_mode` sets to `disabled`).
  45. # This works only if you have a L2 connectivity between all your nodes.
  46. # You wil also have to specify the variable `cilium_native_routing_cidr` to
  47. # make this work. Please refer to the cilium documentation for more
  48. # information about this kind of setups.
  49. cilium_auto_direct_node_routes: false
  50. cilium_native_routing_cidr: ""
  52. # IPsec based transparent encryption between nodes
  53. cilium_ipsec_enabled: false
  55. # Hubble
  56. ### Enable Hubble without install
  57. cilium_enable_hubble: false
  58. ### Enable Hubble Metrics
  59. cilium_enable_hubble_metrics: false
  60. ### if cilium_enable_hubble_metrics: true
  61. cilium_hubble_metrics: {}
  62. # - dns
  63. # - drop
  64. # - tcp
  65. # - flow
  66. # - icmp
  67. # - http
  68. ### Enable Hubble install
  69. cilium_hubble_install: false
  70. ### Enable auto generate certs if cilium_hubble_install: true
  71. cilium_hubble_tls_generate: false
  73. # IP address management mode for v1.9+.
  74. # https://docs.cilium.io/en/v1.9/concepts/networking/ipam/
  75. cilium_ipam_mode: kubernetes
  77. ## A dictionary of extra config variables to add to cilium-config, formatted like:
  78. ## cilium_config_extra_vars:
  79. ## var1: "value1"
  80. ## var2: "value2"
  81. cilium_config_extra_vars: {}