Browse Source

Give more control over IPIP, but with same default behaviour

pull/1365/head
AtzeDeVries 7 years ago
parent
commit
7332679678
3 changed files with 9 additions and 3 deletions
  1. 5
      inventory/group_vars/k8s-cluster.yml
  2. 3
      roles/network_plugin/calico/defaults/main.yml
  3. 4
      roles/network_plugin/calico/tasks/main.yml

5
inventory/group_vars/k8s-cluster.yml

@ -71,6 +71,11 @@ kube_users:
# Can also be set to 'cloud', which lets the cloud provider setup appropriate routing
kube_network_plugin: calico
# In case of calico, override default behaviour to enable IPIP. Default behaviour is in case
# of a cloud_provider ipip:true and in case of no cloud provider ipip:false
# calico_ipip: true
# Enable kubernetes network policies
enable_network_policy: false

3
roles/network_plugin/calico/defaults/main.yml

@ -2,8 +2,9 @@
# Enables Internet connectivity from containers
nat_outgoing: true
# !! NOT USED in favour over calico_ipip
# Use IP-over-IP encapsulation across hosts
ipip: false
# ipip: false
# Set to true if you want your calico cni binaries to overwrite the
# ones from hyperkube while leaving other cni plugins intact.

4
roles/network_plugin/calico/tasks/main.yml

@ -94,7 +94,7 @@
shell: >
echo '{
"kind": "ipPool",
"spec": {"disabled": false, "ipip": {"enabled": {{ cloud_provider is defined or ipip }}},
"spec": {"disabled": false, "ipip": {"enabled": {{ calico_ipip is defined | ternary(calico_ipip, cloud_provider is defined) }}},
"nat-outgoing": {{ nat_outgoing|default(false) and not peer_with_router|default(false) }}},
"apiVersion": "v1",
"metadata": {"cidr": "{{ kube_pods_subnet }}"}
@ -111,7 +111,7 @@
set_fact:
ipip_arg: "--ipip"
when: (legacy_calicoctl and
cloud_provider is defined or ipip)
calico_ipip is defined | ternary (calico_ipip, cloud_provider is defined))
tags: facts
- name: Calico (old) | Define nat-outgoing pool argument

Loading…
Cancel
Save