KubeZero/charts/kubezero-istio-ingress/values.yaml

# Make sure these values match kuberzero-istio !!!
global:
  #hub: docker.io/istio
  #tag: 1.9.0

  logAsJson: true
  jwtPolicy: first-party-jwt

  priorityClassName: "system-cluster-critical"

  defaultPodDisruptionBudget:
    enabled: false

  arch:
    amd64: 2

istio-ingress:
  enabled: false

  gateways:
    istio-ingressgateway:
      autoscaleEnabled: false
      replicaCount: 1
      resources:
        requests:
          memory: 64Mi
        limits:
          # cpu: 100m
          memory: 256Mi
      externalTrafficPolicy: Local
      podAntiAffinityLabelSelector:
      - key: app
        operator: In
        topologyKey: kubernetes.io/hostname
        values: istio-ingressgateway
      type: NodePort
      env:
        TERMINATION_DRAIN_DURATION_SECONDS: '"60"'
        # ISTIO_META_HTTP10: '"1"'

      # The node selector is normally the list of nodeports, see CloudBender
      nodeSelector:
        node.kubernetes.io/ingress.public: "30080_30443"
      ports:
      - name: status-port
        port: 15021
        nodePort: 30021
        protocol: TCP
      - name: http2
        port: 80
        targetPort: 8080
        nodePort: 30080
        protocol: TCP
      - name: https
        port: 443
        targetPort: 8443
        nodePort: 30443
        protocol: TCP
     ## multi-cluster - disabled on public LBs
     #- name: tcp-istiod
     #  port: 15012
     #  targetPort: 15012
     #  nodePort: 30012
     #  protocol: TCP
     ## multi-cluster sni east-west
     #- name: tls
     #  port: 15443
     #  targetPort: 15443
     #  nodePort: 30044
     #  protocol: TCP

  dnsNames: []
# - '*.example.com'

istio-private-ingress:
  enabled: false

  gateways:
    istio-ingressgateway:
      # name and labels make the ingress private 
      name: istio-private-ingressgateway
      labels:
        app: istio-private-ingressgateway
        istio: private-ingressgateway

      autoscaleEnabled: false
      replicaCount: 1
      resources:
        requests:
          cpu: 100m
          memory: 64Mi
        limits:
          # cpu: 100m
          memory: 256Mi
      externalTrafficPolicy: Local
      podAntiAffinityLabelSelector:
      - key: app
        operator: In
        topologyKey: kubernetes.io/hostname
        values: istio-private-ingressgateway
      type: NodePort
      env:
        TERMINATION_DRAIN_DURATION_SECONDS: '"60"'
        # ISTIO_META_HTTP10: '"1"'

      nodeSelector:
        node.kubernetes.io/ingress.private: "31080_31443"
        #nodeSelector: "31080_31443_31671_31672_31224"

      ports:
      - name: status-port
        port: 15021
        nodePort: 31021
        protocol: TCP
      - name: http2
        port: 80
        targetPort: 8080
        nodePort: 31080
        protocol: TCP
      - name: https
        port: 443
        targetPort: 8443
        nodePort: 31443
        protocol: TCP
      # multi-cluster
      - name: tcp-istiod
        port: 15012
        targetPort: 15012
        nodePort: 31012
        protocol: TCP
      # multi-cluster sni east-west
      - name: tls
        port: 15443
        targetPort: 15443
        nodePort: 31044
        protocol: TCP
      #- name: fluentd-forward
      #  port: 24224
      #  nodePort: 31224
      #- name: amqps
      #  port: 5671
      #  nodePort: 31671
      #- name: amqp
      #  port: 5672
      #  nodePort: 31672
      #- name: redis
      #  port: 6379
      #  nodePort: 31379

  dnsNames: []
# - '*.example.com'
First try adding argoCD day 2 2020-11-24 14:44:57 +00:00			`# Make sure these values match kuberzero-istio !!!`
			`global:`
Update ingress default config 2021-02-25 23:24:12 +00:00			`#hub: docker.io/istio`
			`#tag: 1.9.0`
First try adding argoCD day 2 2020-11-24 14:44:57 +00:00
			`logAsJson: true`
			`jwtPolicy: first-party-jwt`

			`priorityClassName: "system-cluster-critical"`

			`defaultPodDisruptionBudget:`
			`enabled: false`

More bugfixes, ingress certs 2020-11-28 23:01:20 +00:00			`arch:`
			`amd64: 2`
First try adding argoCD day 2 2020-11-24 14:44:57 +00:00
			`istio-ingress:`
			`enabled: false`

			`gateways:`
			`istio-ingressgateway:`
			`autoscaleEnabled: false`
			`replicaCount: 1`
			`resources:`
			`requests:`
			`memory: 64Mi`
			`limits:`
			`# cpu: 100m`
			`memory: 256Mi`
			`externalTrafficPolicy: Local`
			`podAntiAffinityLabelSelector:`
			`- key: app`
			`operator: In`
			`topologyKey: kubernetes.io/hostname`
			`values: istio-ingressgateway`
			`type: NodePort`
			`env:`
			`TERMINATION_DRAIN_DURATION_SECONDS: '"60"'`
			`# ISTIO_META_HTTP10: '"1"'`

			`# The node selector is normally the list of nodeports, see CloudBender`
			`nodeSelector:`
			`node.kubernetes.io/ingress.public: "30080_30443"`
			`ports:`
Update ingress default config 2021-02-25 23:24:12 +00:00			`- name: status-port`
First try adding argoCD day 2 2020-11-24 14:44:57 +00:00			`port: 15021`
			`nodePort: 30021`
Fix gateway protocol 2021-02-25 23:35:21 +00:00			`protocol: TCP`
First try adding argoCD day 2 2020-11-24 14:44:57 +00:00			`- name: http2`
			`port: 80`
			`targetPort: 8080`
			`nodePort: 30080`
Fix gateway protocol 2021-02-25 23:35:21 +00:00			`protocol: TCP`
First try adding argoCD day 2 2020-11-24 14:44:57 +00:00			`- name: https`
			`port: 443`
			`targetPort: 8443`
			`nodePort: 30443`
Fix gateway protocol 2021-02-25 23:35:21 +00:00			`protocol: TCP`
Update ingress default config 2021-02-25 23:24:12 +00:00			`## multi-cluster - disabled on public LBs`
			`#- name: tcp-istiod`
			`# port: 15012`
			`# targetPort: 15012`
			`# nodePort: 30012`
			`# protocol: TCP`
			`## multi-cluster sni east-west`
			`#- name: tls`
			`# port: 15443`
			`# targetPort: 15443`
			`# nodePort: 30044`
			`# protocol: TCP`
Istio version bump, ingress terminationgraceperiod patch, aws-ebs version bump 2020-12-16 11:40:14 +00:00
First try adding argoCD day 2 2020-11-24 14:44:57 +00:00			`dnsNames: []`
			`# - '*.example.com'`

			`istio-private-ingress:`
			`enabled: false`

			`gateways:`
			`istio-ingressgateway:`
			`# name and labels make the ingress private`
			`name: istio-private-ingressgateway`
			`labels:`
			`app: istio-private-ingressgateway`
			`istio: private-ingressgateway`

			`autoscaleEnabled: false`
			`replicaCount: 1`
			`resources:`
			`requests:`
			`cpu: 100m`
			`memory: 64Mi`
			`limits:`
			`# cpu: 100m`
			`memory: 256Mi`
			`externalTrafficPolicy: Local`
			`podAntiAffinityLabelSelector:`
			`- key: app`
			`operator: In`
			`topologyKey: kubernetes.io/hostname`
			`values: istio-private-ingressgateway`
			`type: NodePort`
			`env:`
			`TERMINATION_DRAIN_DURATION_SECONDS: '"60"'`
			`# ISTIO_META_HTTP10: '"1"'`

			`nodeSelector:`
			`node.kubernetes.io/ingress.private: "31080_31443"`
			`#nodeSelector: "31080_31443_31671_31672_31224"`

			`ports:`
Update ingress default config 2021-02-25 23:24:12 +00:00			`- name: status-port`
First try adding argoCD day 2 2020-11-24 14:44:57 +00:00			`port: 15021`
			`nodePort: 31021`
Fix gateway protocol 2021-02-25 23:35:21 +00:00			`protocol: TCP`
First try adding argoCD day 2 2020-11-24 14:44:57 +00:00			`- name: http2`
			`port: 80`
			`targetPort: 8080`
			`nodePort: 31080`
Fix gateway protocol 2021-02-25 23:35:21 +00:00			`protocol: TCP`
First try adding argoCD day 2 2020-11-24 14:44:57 +00:00			`- name: https`
			`port: 443`
			`targetPort: 8443`
			`nodePort: 31443`
Fix gateway protocol 2021-02-25 23:35:21 +00:00			`protocol: TCP`
Update ingress default config 2021-02-25 23:24:12 +00:00			`# multi-cluster`
			`- name: tcp-istiod`
			`port: 15012`
			`targetPort: 15012`
			`nodePort: 31012`
			`protocol: TCP`
			`# multi-cluster sni east-west`
			`- name: tls`
			`port: 15443`
			`targetPort: 15443`
			`nodePort: 31044`
			`protocol: TCP`
First try adding argoCD day 2 2020-11-24 14:44:57 +00:00			`#- name: fluentd-forward`
			`# port: 24224`
			`# nodePort: 31224`
			`#- name: amqps`
			`# port: 5671`
			`# nodePort: 31671`
			`#- name: amqp`
			`# port: 5672`
			`# nodePort: 31672`
			`#- name: redis`
			`# port: 6379`
			`# nodePort: 31379`

			`dnsNames: []`
			`# - '*.example.com'`