Switch to kubernetes ipam mode.
This commit is contained in:
Tom Alexander
Tom Alexander
parent
626f74ed2b
commit
6d38265412
GPG Key ID:
36C99E8B3C39D85F
@ -17,17 +17,29 @@
|
|||||||
nix shell 'nixpkgs#kubernetes-helm'
|
nix shell 'nixpkgs#kubernetes-helm'
|
||||||
|
|
||||||
helm repo add cilium https://helm.cilium.io/
|
helm repo add cilium https://helm.cilium.io/
|
||||||
helm template --dry-run=server cilium cilium/cilium --version 1.18.4 --namespace kube-system \
|
helm template --dry-run=client cilium cilium/cilium --version 1.18.5 --namespace kube-system \
|
||||||
--set kubeProxyReplacement=true \
|
--set kubeProxyReplacement=true \
|
||||||
|
--set ipam.mode=kubernetes \
|
||||||
--set k8sServiceHost="2620:11f:7001:7:ffff:ffff:ad7:1dd" \
|
--set k8sServiceHost="2620:11f:7001:7:ffff:ffff:ad7:1dd" \
|
||||||
--set k8sServicePort=6443 \
|
--set k8sServicePort=6443 \
|
||||||
--set ipv6.enabled=true
|
--set ipv6.enabled=true \
|
||||||
|
--set ipv4.enabled=false \
|
||||||
|
--set enableIPv4BIGTCP=false \
|
||||||
|
--set enableIPv6BIGTCP=true \
|
||||||
|
--set routingMode=native \
|
||||||
|
--set ipv4NativeRoutingCIDR=10.0.0.0/8 \
|
||||||
|
--set ipv6NativeRoutingCIDR=fd00::/100
|
||||||
|
|
||||||
kubectl -n kube-system exec ds/cilium -- cilium-dbg status --verbose
|
kubectl -n kube-system exec ds/cilium -- cilium-dbg status --verbose
|
||||||
kubectl -n kube-system exec ds/cilium -- cilium-dbg status | grep KubeProxyReplacement
|
kubectl -n kube-system exec ds/cilium -- cilium-dbg status | grep KubeProxyReplacement
|
||||||
|
|
||||||
# --set hostFirewall.enabled=true
|
# --set hostFirewall.enabled=true
|
||||||
# routingMode=native
|
# routingMode=native
|
||||||
|
|
||||||
|
# --set ipv4-native-routing-cidr=10.0.0.0/8 \
|
||||||
|
# --set ipv6-native-routing-cidr=fd00::/100
|
||||||
|
# --set 'ipam.operator.clusterPoolIPv4PodCIDRList=["10.0.0.0/8"]' \
|
||||||
|
# --set 'ipam.operator.clusterPoolIPv6PodCIDRList=["fd00::/100"]' \
|
||||||
#+end_src
|
#+end_src
|
||||||
** Install flux
|
** Install flux
|
||||||
#+begin_src bash
|
#+begin_src bash
|
||||||
|
|||||||
@ -28,5 +28,27 @@
|
|||||||
k8s = (final.callPackage ./scope.nix { inherit (final.lib) makeScope; });
|
k8s = (final.callPackage ./scope.nix { inherit (final.lib) makeScope; });
|
||||||
}
|
}
|
||||||
);
|
);
|
||||||
|
|
||||||
|
}
|
||||||
|
// {
|
||||||
|
devShells = forAllSystems (
|
||||||
|
system:
|
||||||
|
let
|
||||||
|
pkgs = nixpkgs.legacyPackages.${system};
|
||||||
|
appliedOverlay = self.overlays.default pkgs pkgs;
|
||||||
|
in
|
||||||
|
{
|
||||||
|
default = pkgs.mkShell {
|
||||||
|
nativeBuildInputs = with pkgs; [
|
||||||
|
pkg-config
|
||||||
|
];
|
||||||
|
buildInputs = with pkgs; [
|
||||||
|
kubernetes-helm # To generate cilium manifests
|
||||||
|
fluxcd # To generate flux manifests
|
||||||
|
cilium-cli # To check cilium status
|
||||||
|
];
|
||||||
|
};
|
||||||
|
}
|
||||||
|
);
|
||||||
};
|
};
|
||||||
}
|
}
|
||||||
|
|||||||
File diff suppressed because one or more lines are too long
Loading…
x
Reference in New Issue
Block a user