2021-12-01 12:35:18 +00:00
|
|
|
metallb:
|
|
|
|
enabled: false
|
|
|
|
|
|
|
|
controller:
|
|
|
|
tolerations:
|
|
|
|
- key: node-role.kubernetes.io/master
|
|
|
|
effect: NoSchedule
|
2022-10-27 12:27:42 +00:00
|
|
|
- key: node-role.kubernetes.io/control-plane
|
|
|
|
effect: NoSchedule
|
2021-12-01 12:35:18 +00:00
|
|
|
nodeSelector:
|
|
|
|
node-role.kubernetes.io/control-plane: ""
|
|
|
|
|
2022-07-14 14:59:06 +00:00
|
|
|
ipAddressPools: []
|
|
|
|
#- name: my-ip-space
|
|
|
|
# protocol: layer2
|
|
|
|
# addresses:
|
|
|
|
# - 192.168.42.0/24
|
2021-12-01 12:35:18 +00:00
|
|
|
|
|
|
|
multus:
|
|
|
|
enabled: false
|
2023-04-12 11:14:31 +00:00
|
|
|
tag: "v3.9.3"
|
2022-07-14 14:59:06 +00:00
|
|
|
|
2022-11-11 14:59:18 +00:00
|
|
|
clusterNetwork: "cilium"
|
|
|
|
defaultNetworks: []
|
|
|
|
readinessindicatorfile: "/etc/cni/net.d/05-cilium.conf"
|
2021-12-01 12:35:18 +00:00
|
|
|
|
|
|
|
cilium:
|
|
|
|
enabled: false
|
|
|
|
|
2022-09-11 11:54:56 +00:00
|
|
|
containerRuntime:
|
|
|
|
integration: crio
|
|
|
|
|
|
|
|
# Until we figured out AppArmore on Alpine and Gentoo
|
|
|
|
securityContext:
|
|
|
|
privileged: true
|
|
|
|
|
2023-01-11 12:08:18 +00:00
|
|
|
resources:
|
|
|
|
requests:
|
|
|
|
cpu: 10m
|
|
|
|
memory: 256Mi
|
|
|
|
limits:
|
|
|
|
memory: 1024Mi
|
|
|
|
# cpu: 4000m
|
|
|
|
|
2021-12-01 12:35:18 +00:00
|
|
|
cni:
|
2022-07-14 14:59:06 +00:00
|
|
|
binPath: "/usr/libexec/cni"
|
2022-11-11 14:59:18 +00:00
|
|
|
logFile: /var/log/cilium-cni.log
|
2021-12-01 12:35:18 +00:00
|
|
|
#-- Ensure this is false if multus is enabled
|
2022-11-11 14:59:18 +00:00
|
|
|
exclusive: false
|
2022-09-11 11:54:56 +00:00
|
|
|
|
2022-11-14 13:14:11 +00:00
|
|
|
#bpf:
|
|
|
|
# hostLegacyRouting: true
|
2022-09-11 11:54:56 +00:00
|
|
|
# tproxy: false
|
|
|
|
|
2022-07-31 22:52:00 +00:00
|
|
|
cluster:
|
2022-09-11 11:54:56 +00:00
|
|
|
# This should match the second octet of clusterPoolIPv4PodCIDRList
|
2022-07-31 22:52:00 +00:00
|
|
|
# to prevent IP space overlap and easy tracking
|
2022-11-11 14:59:18 +00:00
|
|
|
# use 240 as default, less likely to clash with 1
|
2022-09-23 10:54:27 +00:00
|
|
|
id: 240
|
2022-07-31 22:52:00 +00:00
|
|
|
name: default
|
|
|
|
|
|
|
|
ipam:
|
|
|
|
operator:
|
|
|
|
clusterPoolIPv4PodCIDRList:
|
2022-09-23 10:54:27 +00:00
|
|
|
- 10.240.0.0/16
|
2022-07-31 22:52:00 +00:00
|
|
|
|
|
|
|
# Keep it simple for now
|
|
|
|
l7Proxy: false
|
|
|
|
|
2022-11-14 13:14:11 +00:00
|
|
|
#rollOutCiliumPods: true
|
|
|
|
|
2022-07-14 14:59:06 +00:00
|
|
|
cgroup:
|
|
|
|
autoMount:
|
|
|
|
enabled: false
|
|
|
|
hostRoot: "/sys/fs/cgroup"
|
2021-12-01 12:35:18 +00:00
|
|
|
|
|
|
|
tunnel: geneve
|
|
|
|
|
|
|
|
prometheus:
|
|
|
|
enabled: false
|
|
|
|
port: 9091
|
|
|
|
|
|
|
|
operator:
|
|
|
|
replicas: 1
|
2022-07-14 14:59:06 +00:00
|
|
|
tolerations:
|
|
|
|
- key: node-role.kubernetes.io/master
|
|
|
|
effect: NoSchedule
|
2022-10-27 12:27:42 +00:00
|
|
|
- key: node-role.kubernetes.io/control-plane
|
|
|
|
effect: NoSchedule
|
2022-07-14 14:59:06 +00:00
|
|
|
nodeSelector:
|
|
|
|
node-role.kubernetes.io/control-plane: ""
|
2021-12-01 12:35:18 +00:00
|
|
|
|
|
|
|
hubble:
|
|
|
|
enabled: false
|
2022-11-14 13:14:11 +00:00
|
|
|
relay:
|
|
|
|
enabled: false
|
|
|
|
ui:
|
|
|
|
enabled: false
|
|
|
|
tls:
|
|
|
|
auto:
|
|
|
|
method: cert-manager
|
|
|
|
certManagerIssuerRef:
|
|
|
|
group: cert-manager.io
|
|
|
|
kind: ClusterIssuer
|
|
|
|
name: kubezero-local-ca-issuer
|