C12s/c12s-kubespray
3
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Persist br_netfilter module loading (#1760)

Browse source
This commit is contained in:
Julian Poschmann 2017-10-13 11:50:29 +02:00 committed by Matthew Mosesohn
parent ad9fa73301
commit 56763d4288
1 changed files with 6 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
roles/kubernetes/node/tasks/main.yml
View file

@ -79,6 +79,12 @@
state: present state: present
when: modinfo_br_netfilter.rc == 0 when: modinfo_br_netfilter.rc == 0
- name: Persist br_netfilter module
copy:
dest: /etc/modules-load.d/kubespray-br_netfilter.conf
content: br_netfilter
when: modinfo_br_netfilter.rc == 0
# kube-proxy needs net.bridge.bridge-nf-call-iptables enabled when found if br_netfilter is not a module # kube-proxy needs net.bridge.bridge-nf-call-iptables enabled when found if br_netfilter is not a module
- name: Check if bridge-nf-call-iptables key exists - name: Check if bridge-nf-call-iptables key exists
command: "sysctl net.bridge.bridge-nf-call-iptables" command: "sysctl net.bridge.bridge-nf-call-iptables"