Enable rollingUpdate support kiam, turn off iptables support

This commit is contained in:
Stefan Reimer 2020-05-15 17:23:25 +01:00
parent 20c3fe37e6
commit 040f7eedeb
2 changed files with 11 additions and 2 deletions

View File

@ -2,7 +2,7 @@ apiVersion: v2
name: kubezero-kiam name: kubezero-kiam
description: KubeZero Umbrella Chart for Kiam description: KubeZero Umbrella Chart for Kiam
type: application type: application
version: 0.1.3 version: 0.2.0
home: https://kubezero.com home: https://kubezero.com
icon: https://cdn.zero-downtime.net/assets/logo_small.png icon: https://cdn.zero-downtime.net/assets/logo_small.png
keywords: keywords:

View File

@ -1,5 +1,7 @@
kiam: kiam:
server: server:
image:
tag: "v3.6-rc1"
# kiam.server.assumeRoleArn -- kiam server IAM role to assume, required as we run the agents next to the servers normally # kiam.server.assumeRoleArn -- kiam server IAM role to assume, required as we run the agents next to the servers normally
assumeRoleArn: arn:aws:iam::123456789012:role/kiam-server-role assumeRoleArn: arn:aws:iam::123456789012:role/kiam-server-role
useHostNetwork: true useHostNetwork: true
@ -15,6 +17,7 @@ kiam:
deployment: deployment:
enabled: true enabled: true
replicas: 1 replicas: 1
updateStrategy: RollingUpdate
tolerations: tolerations:
- key: node-role.kubernetes.io/master - key: node-role.kubernetes.io/master
effect: NoSchedule effect: NoSchedule
@ -27,8 +30,14 @@ kiam:
level: warn level: warn
agent: agent:
image:
tag: "v3.6-rc1"
gatewayTimeoutCreation: "5s"
updateStrategy: RollingUpdate
# IP tables set on each node at boot, see CloudBender
host: host:
iptables: true iptables: false
interface: "cali+"
whiteListRouteRegexp: '^/latest/(meta-data/instance-id|dynamic)' whiteListRouteRegexp: '^/latest/(meta-data/instance-id|dynamic)'
sslCertHostPath: /etc/ssl/certs sslCertHostPath: /etc/ssl/certs
tlsSecret: kiam-agent-tls tlsSecret: kiam-agent-tls